Buying Options
iPhone Forensics
Print $39.99
Add to Cart
Print+Ebook $43.99
Add to Cart
Ebook $31.99
(Mobi, PDF, ePub)
Add to Cart
Safari Books Online
Add to Cart
What is this?
Print £30.99
Add to Cart
What is this?

iPhone Forensics

Recovering Evidence, Personal Data, and Corporate Assets

By
Jonathan Zdziarski
Publisher:
O'Reilly Media
Released:
September 2008
Pages:
144
Press Release
Description
With iPhone use increasing in business networks, IT and security professionals face a serious challenge: these devices store an enormous amount of information. If your staff conducts business with iPhones, you need to know how to recover, analyze, and securely destroy sensitive data. iPhone Forensics supplies the knowledge necessary to conduct complete and highly specialized forensic analysis of the iPhone, iPhone 3G, and iPod Touch.
Full Description
Table of Contents

  1. Chapter 1 Introduction to Computer Forensics

    1. Making Your Search Legal

    2. Rules of Evidence

    3. Good Forensic Practices

    4. Technical Processes

  2. Chapter 2 Understanding the iPhone

    1. What’s Stored

    2. Equipment You’ll Need

    3. Determining the Firmware Version

    4. Disk Layout

    5. Communication

    6. Upgrading the iPhone Firmware

    7. Restore Mode and Integrity of Evidence

    8. Cross-Contamination and Syncing

  3. Chapter 3 Accessing the iPhone

    1. Installing the Recovery Toolkit (Firmware v1.0.2–1.1.4)

    2. Circumventing Passcode Protection (Firmware v1.0.2–1.1.4)

    3. Installing the Recovery Toolkit (Firmware v2.x)

    4. Removing the Forensic Recovery Toolkit

  4. Chapter 4 Forensic Recovery

    1. Configuring Wi-Fi and SSH

    2. Recovering the Media Partition

    3. Data Carving Using Foremost/Scalpel

    4. Validating Images with ImageMagick

    5. Strings Dump

    6. The Takeaway

  5. Chapter 5 Electronic Discovery

    1. Converting Timestamps

    2. Mounting the Disk Image

    3. Graphical File Navigation

    4. Extracting Image Geotags with Exifprobe

    5. SQLite Databases

    6. Important Database Files

    7. Property Lists

    8. Other Important Files

  6. Chapter 6 Desktop Trace

    1. Proving Trusted Pairing Relationships

    2. Serial Number Records

    3. Device Backups

    4. Activation Records

  7. Chapter 7 Case Help

    1. Employee Suspected of Inappropriate Communication

    2. Employee Destroyed Important Data

    3. Seized iPhone: Whose Is It and Where Is He?

  1. Appendix Disclosures and Source Code

    1. Power-On Device Modifications (Disclosure)

    2. Installation Record (Disclosure)

    3. Technical Procedure

  2. Colophon

View Full Table of Contents
Check out Related Content
Product Details
Title:
iPhone Forensics
By:
Jonathan Zdziarski
Publisher:
O'Reilly Media
Formats:
  • Print
  • Ebook
  • Safari Books Online
Print Release:
September 2008
Ebook Release:
December 2008
Pages:
144
Print ISBN:
978-0-596-15358-8
| ISBN 10:
0-596-15358-9
Ebook ISBN:
978-0-596-15901-6
| ISBN 10:
0-596-15901-3
Customer Reviews
About the Author

  1. Jonathan Zdziarski

    Jonathan Zdziarski is better known as the hacker "NerveGas" in the iPhone development community. He worked on the initial cracking of the iPhone and helped lead the effort to port the first open source applications. His initial book on the iPhone, iPhone Open Application Development, developed an immediate cult following and taught developers how to write applications for the popular device before the SDK was ever conceived.

    Prior to the release of iPhone Forensics, Jonathan wrote and supported an iPhone forensics manual distributed exclusively to law enforcement, and has assisted many forensic examiners in their investigations. Jonathan frequently consults to law enforcement agencies and teaches an iPhone forensics workshop in his spare time to train forensic examiners and corporate security personnel.

    Jonathan is also a full-time research scientist specializing in machine learning technology to combat online fraud and spam, and to develop networking products capable of learning how to better protect customers. He is founder of the DSPAM project, a high-profile, next-generation spam filter that was acquired in 2006 by Sensory Networks, Inc. He lectures widely on the topic of spam and is a foremost researcher in the fields of machine-learning and algorithmic theory.

    View Jonathan Zdziarski's full profile page.

Colophon

Our look is the result of reader comments, our own experimentation, and feedback from distribution channels. Distinctive covers complement our distinctive approach to technical topics, breathing personality and life into potentially dry subjects.

The animals on the cover of iPhone Forensics are least weasels (Mustela nivalis). There are 67 species of weasel, including the mink, ermine, ferret, otter, and skunk. Weasels, who are characterized by long, slender bodies and short legs, are found on all continents except Antarctica and Australia, and in a vast variety of habitats. The least weasel is the smallest of the 67 species of weasel. Weighing in at approximately two ounces and measuring less than ten inches long, the least weasel is the smallest carnivore on Earth. They are found throughout the world, in northern climates. In warm weather this weasel's coat is brown, with a white underside. In winter it turns completely white. Thanks to its camouflage abilities and its speed and agility, the least weasel is rarely caught.

The diet of the least weasel is made up primarily of voles and mice, which, because of the weasels' high metabolism, they hunt constantly. One family of these little weasels can consume thousands of rodents each year, making them important in controlling pest populations. Because it is so small, the least weasel can follow mice into their burrows and eat them there. Like other weasels, they will occasionally then make their victim's home their own, lining it with the fur of the former resident when preparing to nest. Least weasels can produce two litters a year, with three to five young per litter.

The cover image is from Lydekker's Library of Natural History. The cover font is Adobe ITC Garamond. The text font is Linotype Birka; the heading font is Adobe Myriad Condensed; and the code font is LucasFont's TheSansMono- Condensed.

  • Book cover of iPhone Forensics
Got a Question?
icons
Favicon Service and support by Satisfaction