±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 4 Overall: 36595
New Yesterday: 5 Visitors: 118

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

Samsung Galaxy S7 edge forensics

Discussion of forensic issues related to all types of mobile phones and underlying technologies (GSM, GPRS, UMTS/3G, HSDPA, LTE, Bluetooth etc.)
Subforums: Mobile Telephone Case Law
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts
 
  

phoneauditor
Newbie
 

Samsung Galaxy S7 edge forensics

Post Posted: Dec 29, 19 19:40

Hello Reddit community!

This is my first ever post on Reddit so forgive me if I make any mistakes.

I have a Samsung Galaxy S7 edge. I am not sure when I bought it, but I formatted it and then had it repaired by Samsung around June 2017. I have used that phone constantly since then. I never updated it so I think it is still Android 7.0. I set a PIN for the SIM, lock screen, and Data Protection -> Strong Protection (I think this is what it was called). I also selected for the SD card to be encrypted. I did not use the secure folder Knox as I was too lazy to draw a pattern each time I opened an app, and I never downloaded any third party encryption apps.

I have since lost the PIN, and I do not want to try to guess it because I only have 15 attempts before my Samsung Galaxy S7 edge formats itself. I have stupidly switched the phone off and kept it in a draw. Sadly I also cannot unlock it from my PlayStore account, and I made no backups on Google Drive.

I have seen some good tutorials online, but from my understanding most require the phone to still be powered on, others even require the installation of apps. I saw a tutorial which claimed it's possible to put a Samsung engineering bootloader onto the device which can reset the PIN, I think because the default encryption is something in the chip + "default_password" but given my settings explained in the first paragraph I would have changed it from the easy to break default?

I heard Samsung phones are highly secure so nobody can access them, but before I format it and give it to my son I thought I would check with Reddit. Even something destructive such as JTAG or chip-off would be fine.

That phone means the world to me, I really hope this community can help. I have done as much investigating as possible before asking this question to be less of a time waster to the community.

Thank you,

Larry Dobson  
 
  

Igor_Michailov
Senior Member
 

Re: Samsung Galaxy S7 edge forensics

Post Posted: Dec 30, 19 04:57

- phoneauditor
Hello Reddit community!


Here is not Reddit bro. Laughing Laughing Laughing
_________________
Computer, Cell Phone & Chip-Off Forensics

linkedin.com/in/igormikhaylovcf 
 
  

Rich2005
Senior Member
 

Re: Samsung Galaxy S7 edge forensics

Post Posted: Dec 30, 19 12:47

Cellebrite.  
 
  

arcaine2
Senior Member
 

Re: Samsung Galaxy S7 edge forensics

Post Posted: Dec 30, 19 17:23

What you're describing seems to be a secure startup enabled device. No JTAG, ISP, chip-off is gonna help you. The only solution is to enter a valid password so the phone boots into Android and decrypts itself. Depending on the variant and firmware version, you may be able to find eng-root file and bruteforce it with help of Frida. There is a script to do that on github (google it) so that's something you can try, assuming you'll be able to find match eng-root file. There's still a risk that it'll wipe to phone so test it on spare device before.  
 
  

jaclaz
Senior Member
 

Re: Samsung Galaxy S7 edge forensics

Post Posted: Dec 30, 19 19:15

- Igor_Michailov
- phoneauditor
Hello Reddit community!


Here is not Reddit bro. Laughing Laughing Laughing

Well, he posted there too, so maybe it is only a copy and paste in good faith:
www.reddit.com/r/compu...forensics/

jaclaz
_________________
- In theory there is no difference between theory and practice, but in practice there is. - 
 
  

foresicnull
Newbie
 

Re: Samsung Galaxy S7 edge forensics

Post Posted: Jan 17, 20 06:22

Use Cellebrite UFED.
_________________
Forensic Softwares : nullprog.org/software/forensic/ 
 
  

stetocina
Member
 

Re: Samsung Galaxy S7 edge forensics

Post Posted: Jan 21, 20 18:59

Do you have samsung account at this phone. If you have and your phone connected to intenet you can unlock phone with samsung find my phone  
 

Page 1 of 1