A practical hands-on guide to acquire and analyze iOS devices with the latest forensic techniques and tools
Mobile device forensics relates to the recovery of data from a mobile device. It has an impact on many different situations including criminal investigations and intelligence gathering. iOS devices, with their wide range of functionality and usability, have become one of the mobile market leaders. Millions of people often depend on iOS devices for storing sensitive information, leading to a rise in cybercrime. This has increased the need to successfully retrieve this information from these devices if stolen or lost.
Learning iOS Forensics will give you an insight into the forensics activities you can perform on iOS devices. You will begin with simple concepts such as identifying the specific iOS device and the operating system version and then move on to complex topics such as analyzing the different recognized techniques to acquire the content of the device. Throughout the journey, you will gain knowledge of the best way to extract most of the information by eventually bypassing the protection passcode. After that, you, the examiner, will be taken through steps to analyze the data. The book will give you an overview of how to analyze malicious applications created to steal user credentials and data.
What You Will Learn
Identify an iOS device among various models (iPhone, iPad, and iPod Touch) and verify the iOS version installed
Crack or bypass the passcode protection chosen by the user
Acquire detailed physical or logical info of an iOS device
Retrieve extra information from side channel data leaks
Recover information from a local backup and eventually crack the backup password
Download backup information stored on iCloud
Analyze the system, user, and third-party information from a device, backup, or iCloud
Examine malicious apps to identify the stolen data and credentials
Downloading the example code for this book. You can download the example code files for all Packt books you have purchased from your account at http://www.PacktPub.com. If you purchased this book elsewhere, you can visit http://www.PacktPub.com/support and register to have the files e-mailed directly to you.