Best books on Mobil...
 
Notifications
Clear all

Best books on Mobile Forensics

8 Posts
6 Users
0 Likes
1,178 Views
ForensicMeteor
(@forensicmeteor)
Posts: 60
Trusted Member
Topic starter
 

I'm looking to purchase 2 books regarding mobile forensics. I was looking at Android Forensics Investigation, Analysis and Mobile Security for Google Android.

http//www.ebay.com/itm/Android-Forensics-Investigation-Analysis-and-Mobile-Security-for-Google-/351150189837?pt=Non_Fiction&hash=item51c22ead0d

Any recommendations?

 
Posted : 16/01/2015 10:09 pm
UnallocatedClusters
(@unallocatedclusters)
Posts: 577
Honorable Member
 

I read and found valuable the book "iOS Forensic Analysis for iPhone, iPad, and iPod touch" (Books for Professionals by Professionals) Paperback – December 27, 2010 by Sean Morrissey (Author), Tony Campbell (Author).

http//www.amazon.com/iOS-Forensic-Analysis-iPhone-Professionals/dp/1430233427.

Shaun Morrisey is CEO of Katana Forensics (I am a Lantern Certified Examiner).

 
Posted : 17/01/2015 4:58 am
UnallocatedClusters
(@unallocatedclusters)
Posts: 577
Honorable Member
 

Actually, a free reading source is the DEFT Manual (http//www.deftlinux.net/deft-manual/).

The DEFT manual's Chapter 7 on Mobile Forensics may actually be the most concise and best written work (also free D ) on the subject, in my humble opinion.

If you are looking to delve into Mobile Forensics, I recommend downloading DEFT and using it to acquire an Android device. It is a relatively manual process as compared to using some push-button tools, but you will learn quite a bit about what is involved.

 
Posted : 17/01/2015 5:04 am
(@trewmte)
Posts: 1877
Noble Member
 

I have a range of materials for (U)SIM, handset and cell site analysis that I give to students and practitioners.

I have nearly finished a handset examination help guide for contemporaneous noting taking to help practitioners formulate in-house SOPs. This document will be free of charge when published.

 
Posted : 17/01/2015 6:44 pm
ForensicMeteor
(@forensicmeteor)
Posts: 60
Trusted Member
Topic starter
 

Actually, a free reading source is the DEFT Manual (http//www.deftlinux.net/deft-manual/).

The DEFT manual's Chapter 7 on Mobile Forensics may actually be the most concise and best written work (also free D ) on the subject, in my humble opinion.

If you are looking to delve into Mobile Forensics, I recommend downloading DEFT and using it to acquire an Android device. It is a relatively manual process as compared to using some push-button tools, but you will learn quite a bit about what is involved.

That is perfect. Using Cellebrite and Oxygen bother me due to the autonomous nature of it all. I want to know the hows and whys. Thank you!

 
Posted : 22/01/2015 1:27 am
(@forensixx)
Posts: 5
Active Member
 

Practical Mobile Forensics by Bommisetty et al. (2014) Superior book if you're looking for techniques other than "use Cellebrite"'.

 
Posted : 10/02/2015 10:34 pm
TuckerHST
(@tuckerhst)
Posts: 175
Estimable Member
 

I second the motion on Practical Mobile Forensics by Bommisetty et al. (2014).

This is the book we've been waiting for. It's current and covers iOS, Android, Windows, and Blackberry. It's more than just a book on tools, getting down and dirty into the details.

 
Posted : 11/02/2015 2:59 am
pcstopper18
(@pcstopper18)
Posts: 60
Trusted Member
 

I also recommend Practical Mobile Forensics. One of the authors is Heather Mahalik, who teaches for SANS. They have a new course she helped develop called Advanced Smartphone Forensics (FOR585), which is also a recommended option.

I have been working my way through the book and I definitely recommend it.

In regards to an earlier comment, I must add that knowing the "hows and whys" is a must as far as I am concerned, but the reality is most of us will need automated tools in order to get anything done as we are all pressed for time and answers in the real world. The good thing is that actually knowing the "hows and whys" will allow you to evaluate and validate any automated tool you choose to use. That is what a true examiner/analyst does.

 
Posted : 23/02/2015 7:22 pm
Share: