You are previewing iOS Forensics Cookbook.
O'Reilly logo
iOS Forensics Cookbook

Book Description

Over 20 recipes that will enable you to handle and extract data from iOS devices for forensics

About This Book

  • This book gets you straight into solving even the most complex iOS forensic problems with easy-to-understand recipes

  • Get to grips with extraction and analysis techniques to perform forensic investigations on iOS devices

  • Gain insights into how to protect your data and perform data recovery from iOS-based devices

  • Who This Book Is For

    If you are an iOS application developer who wants to learn about a test flight, hockey app integration, and recovery tools, then this book is for you. This book will be helpful for students learning forensics, as well as experienced iOS developers.

    What You Will Learn

  • Discover the various ways to save data in the document directory of the device

  • Get to grips with encrypting and decrypting of files saved in the document directories

  • Explore ways to integrate social media with iOS applications

  • Grab the user events and actions on the iOS application using analytic tools

  • Analyze useful information from the data gathered in the cloud

  • Grasp numerous concepts associated with air application distribution

  • Track errors in an application effectively to document them for forensic analysis

  • Read crash reports accumulated on iTunesConnect and decode them to generate and gather useful information

  • In Detail

    Mobile device forensics is a branch of digital forensics that involves the recovery of evidence or data in a digital format from a device without affecting its integrity. With the growing popularity of iOS-based Apple devices, iOS forensics has developed immense importance.

    To cater to the need, this book deals with tasks such as the encryption and decryption of files, various ways to integrate techniques with social media, and ways to grab the user events and actions on the iOS app. Using practical examples, we’ll start with the analysis keychain and raw disk decryption, social media integration, and getting accustomed to analytics tools. You’ll also learn how to distribute the iOS apps without releasing them to Apple’s App Store. Moving on, the book covers test flights and hockey app integration, the crash reporting system, recovery tools, and their features. By the end of the book, using the aforementioned techniques, you will be able to successfully analyze iOS-based devices forensically.

    Style and approach

    This book takes a step-by-step recipe-based approach to iOS forensics and investigation techniques. Topics are explained sequentially in order of complexity, and are accompanied by code and theory that is easy to grasp.

    Downloading the example code for this book. You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the code file.

    Table of Contents

    1. iOS Forensics Cookbook
      1. Table of Contents
      2. iOS Forensics Cookbook
      3. Credits
      4. About the Authors
      5. www.PacktPub.com
        1. Support files, eBooks, discount offers, and more
          1. Why Subscribe?
          2. Free Access for Packt account holders
      6. Preface
        1. What this book covers
        2. What you need for this book
        3. Who this book is for
        4. Sections
          1. Getting ready
          2. How to do it…
          3. How it works…
          4. There's more…
          5. See also
        5. Conventions
        6. Reader feedback
        7. Customer support
          1. Downloading the example code
          2. Errata
          3. Piracy
          4. Questions
      7. 1. Saving and Extracting Data
        1. The Documents directory
          1. Getting ready
          2. How to do it...
          3. See also
        2. Saving data using the RAW file
          1. Getting ready
          2. How to do it...
        3. Saving data in the SQLite database
          1. Getting ready
          2. How to do it...
        4. Learning about core data
          1. Getting ready
          2. How to do it...
      8. 2. Social Media Integration
        1. Integration with Facebook
          1. Getting ready
          2. How to do it...
        2. Integrating with LinkedIn
          1. Getting ready
          2. How to do it...
        3. Integration with Instagram
          1. Getting ready
          2. How to do it...
      9. 3. Integrating Data Analytics
        1. Introduction
        2. Google Analytics
          1. Getting ready
          2. How to do it...
        3. Flurry Analytics
          1. Getting ready
          2. How to do it...
        4. Flurry with data mining
          1. Getting ready
          2. How to do it…
        5. Integrating Mixpanel
          1. Getting ready
          2. How to do it…
      10. 4. App Distribution and Crash Reporting
        1. Setting up and integrating TestFlight
          1. Getting ready
          2. How to do it...
        2. Integrating HockeyApp
          1. Getting ready
          2. How to do it...
        3. HockeyApp for crash reporting
          1. Getting ready
          2. How to do it...
      11. 5. Demystifying Crash Reports
        1. Crashlytics integration
          1. Getting ready
          2. How to do it...
        2. Desymbolication of crash logs
          1. Receiving crash logs directly from a device without using Xcode
          2. Getting ready
          3. How to do it...
          4. Receiving crash logs from a device by using Xcode
          5. How to do it...
        3. Analyzing crash reports
          1. Getting ready
          2. How to do it...
      12. 6. Forensics Recovery
        1. DFU and Recovery modes
          1. How to do it...
          2. How to do it...
        2. Extracting and reading data
          1. Getting ready
          2. How to do it...
          3. See more...
        3. Recovering backups
          1. How to do it...
          2. See more...
        4. Extracting data from iTunes backups
          1. How to do it...
        5. Encrypting and decrypting tools
          1. How to do it...
          2. See more...
      13. 7. Forensics Tools
        1. Exploring iPhone Backup Analyzer
          1. Getting ready
          2. How to do it...
        2. Exploring iExplorer
          1. How to do it...
        3. Exploring SQLite browser
          1. Getting ready
          2. How to do it...
        4. Jailbreaking iPhone devices
          1. Getting ready
          2. How to do it...
      14. Index