Iphone image RAW using linux

for direct trouble shooting it might be helpful to post up the Hardware and iOS versions you are dealing with.

In relation to tools that can image the iPhone the obvious first question relates to your employment. Are you working in Law Enforcement?

If you are LE then you can apply for free access to the Zdziarski toolset
http//www.iosresearch.org/
They work on both Linux and Mac

Otherwise if you have access to a Mac then Sean at Katana offers a good solution
http//katanaforensics.com/

My personal preference at the moment (due to its Windows and Mac support) would be the offerings from Elcomsoft
http//www.elcomsoft.com/eift.html

There are other solutions that offer iPhone imaging as part of their arsenal such as the Cellebrite Ultimate unit
http//www.cellebrite.com/mobile-forensics-products/forensics-products/ufed-ultimate.html

thx doug for your message.
nop i am not working as le, learning forensic on mobile, and planning to pass chfi certification soon.

i tried the katana tool, but installed failed on my mac, ill try to windows solution and let you know.
thxx a lot!
best regards
herve

great, no freeware, noway i gonna pay for try…
so there is no reliable way to do a raw of an iphone without a credit card? '(

Just a suggestion. Have you looked at Ubuntu?

hi trewmte,
yep that s what i use, but aside of the dd over ssh, couldn t find any ways/ tutorials for do a raw of an iphone.
can you help?
best regards
herve

Hi Herve

Because you are looking for possible free solution, a few posts I read that I wasn't sure whether you have read them?

http//jefferytay.wordpress.com/2011/04/25/backing-up-an-ios-device-iphone-ipad/

http//modmyi.com/forums/general-iphone-chat/681068-3gs-3-0-disk-image-dump-failure-leads-brand-new-iphone-users-tale-rage-woe-2.html

http//log.ijulien.com/post/182804914/iphone-3gs-data-recovery

http//ubuntuforums.org/showthread.php?t=1366684

http//www.tuxtree.com/2009/10/how-to-connect-iphoneipod-touch-using.html

Doug, the Elcomsoft version is also LE only so 2 of those choices the majority can't use.

Everyday I am more amazed at the companies that go this route and only supply to LE.

for direct trouble shooting it might be helpful to post up the Hardware and iOS versions you are dealing with.

In relation to tools that can image the iPhone the obvious first question relates to your employment. Are you working in Law Enforcement?

If you are LE then you can apply for free access to the Zdziarski toolset
http//www.iosresearch.org/
They work on both Linux and Mac

Otherwise if you have access to a Mac then Sean at Katana offers a good solution
http//katanaforensics.com/

My personal preference at the moment (due to its Windows and Mac support) would be the offerings from Elcomsoft
http//www.elcomsoft.com/eift.html

There are other solutions that offer iPhone imaging as part of their arsenal such as the Cellebrite Ultimate unit
http//www.cellebrite.com/mobile-forensics-products/forensics-products/ufed-ultimate.html

Hi Herve

Because you are looking for possible free solution, a few posts I read that I wasn't sure whether you have read them?

http//jefferytay.wordpress.com/2011/04/25/backing-up-an-ios-device-iphone-ipad/

http//modmyi.com/forums/general-iphone-chat/681068-3gs-3-0-disk-image-dump-failure-leads-brand-new-iphone-users-tale-rage-woe-2.html

http//log.ijulien.com/post/182804914/iphone-3gs-data-recovery

http//ubuntuforums.org/showthread.php?t=1366684

http//www.tuxtree.com/2009/10/how-to-connect-iphoneipod-touch-using.html

hi,
thx a lot for your links, truelly appreciate.
from what i ve read, i ve did the right thing then with my dd command.
the question is, why you can t mount the .img image that is generated?
is it cause of bs=1M ?

best regards
herve

Doug, the Elcomsoft version is also LE only so 2 of those choices the majority can't use.

Everyday I am more amazed at the companies that go this route and only supply to LE.

for direct trouble shooting it might be helpful to post up the Hardware and iOS versions you are dealing with.

In relation to tools that can image the iPhone the obvious first question relates to your employment. Are you working in Law Enforcement?

If you are LE then you can apply for free access to the Zdziarski toolset
http//www.iosresearch.org/
They work on both Linux and Mac

Otherwise if you have access to a Mac then Sean at Katana offers a good solution
http//katanaforensics.com/

My personal preference at the moment (due to its Windows and Mac support) would be the offerings from Elcomsoft
http//www.elcomsoft.com/eift.html

There are other solutions that offer iPhone imaging as part of their arsenal such as the Cellebrite Ultimate unit
http//www.cellebrite.com/mobile-forensics-products/forensics-products/ufed-ultimate.html

i agree with you, this is just pathetic, "l337 only" kind of behaviour tthat make you want to shate your app on bittorent once you scored it!