Skip to Content
Practical Mobile Forensics - Fourth Edition
book

Practical Mobile Forensics - Fourth Edition

by Rohit Tamma, Oleg Skulkin, Heather Mahalik, Satish Bommisetty
April 2020
Intermediate to advanced
400 pages
10h 12m
English
Packt Publishing
Content preview from Practical Mobile Forensics - Fourth Edition

Working with Autopsy

Autopsy is one of the best tools for filesystem examinations. Unfortunately, iOS parsing is not provided in Autopsy, but it still may be useful for filesystem images. Autopsy can be downloaded from http://sleuthkit.org/autopsy/. When using Autopsy, the Android Analyzer module will parse some application data from the device. Let's look at how to use Autopsy for Android image analysis.

To use Autopsy, download the software and install it on a Windows machine and follow these instructions. Make sure that you are always using the latest version:

  1. Launch Autopsy.
  2. Create a new case:
Autopsy case creation
  1. Select Next and then ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Practical Mobile Forensics - Second Edition

Practical Mobile Forensics - Second Edition

Heather Mahalik, Rohit Tamma, Satish Bommisetty
Practical Mobile Forensics - Third Edition

Practical Mobile Forensics - Third Edition

Rohit Tamma, Oleg Skulkin, Heather Mahalik, Satish Bommisetty
Digital Forensics and Incident Response - Fourth Edition
Digital Forensics and Incident Response - Second Edition

Publisher Resources

ISBN: 9781838647520