Summary

This chapter has covered many topics related to logical extractions of Android devices. As a recap, the various methods and their requirements are as follows:

Method	Requirements
ADB pull	USB debugging enabled Secure USB debugging bypassed on 4.2.2+ Root access to obtain user data
ADB pull from Recovery Mode	Must be a custom recovery to enable ADB access Root access to obtain user data
Fastboot to boot from custom recovery image	Unlocked bootloader Boot image for device
ADB backup	USB debugging enabled Secure USB debugging bypassed on 4.2.2+ Must be done from a running device (not Recovery mode)
ADB dumpsys	USB debugging enabled Secure USB debugging bypassed on 4.2.2+ Must be done from a running device (not recovery mode)
SIM card ...

Get Learning Android Forensics now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Learning Android Forensics by Rohit Tamma, Donnie Tindall

Summary

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly