A hands-on guide to Android forensics, from setting up the forensic workstation to analyzing key forensic artifacts
About This Book
- A professional, step-by-step approach to forensic analysis complete with key strategies and techniques
- Analyze the most popular Android applications using free and open source tools
- Learn forensically-sound core data extraction and recovery techniques
Who This Book Is For
If you are a forensic analyst or an information security professional wanting to develop your knowledge of Android forensics, then this is the book for you. Some basic knowledge of the Android mobile platform is expected.
Many forensic examiners rely on commercial, push-button tools to retrieve and analyze data, even though there is no tool that does either of these jobs perfectly. This book will introduce you to the Android platform and its architecture, and provides a high-level overview of what Android forensics entails. You will see how data is stored on Android devices and how to set up a digital forensic examination environment. Next, you will go through the various physical and logical techniques to extract data from devices to obtain forensic evidence. You will also learn how to reverse-engineer applications and forensically analyze the data with the help of various open source and commercial tools.
By the end of this book, you will have a complete understanding of the Android forensic process.
Table of Contents
Chapter 1: Introducing Android Forensics
Chapter 2: Setting Up An Android Forensic Environment
Chapter 3: Understanding Data Storage On Android Devices
Chapter 4: Extracting Data Logically From Android Devices
Chapter 5: Extracting Data Physically From Android Devices
Chapter 6: Recovering Deleted Data From An Android Device
Chapter 7: Forensic Analysis Of Android Applications
Chapter 8: Android Forensic Tools Overview