SANS DFIR WEBCAST – Knock off Phone Forensics Some handsets Aren't What They Appear To Be
https://www.ispeech.org/text.to.speech
Mobile devices are not always what they appear to be. Knock-off handsets are prevalent in Asia, Europe and are infiltrating the borders of the United States. Commercial forensic tools do not provide the same amount of support for knock-off devices as they do for GSM and CDMA handsets. Specialized forensic tools and add-on options to commercial kits are available, however not all of the data is parsed for the investigator. This talk will lead an exploration of the different methods for acquiring and analyzing knock-off handsets, to include a live acquisition demonstration. A detailed overview of the files contained within a physical dump of a knock-off device will be provided. Examples will be provided to demonstrate proper parsing methods and data interpretation of the knock-off device files.
by Heather Mahalik
Heather Mahalik is a project manager for Ocean's Edge, where she uses her experience to manage projects focused on wireless cyber security and mobile application development. Heather has over 12 years of experience in digital forensics, vulnerability discovery of mobile devices, application reverse engineering and manual decoding. She is currently a certified instructor for the SANS Institute and is the course lead for FOR585, Advanced Smartphone Forensics.
Previously, Heather led the mobile device team for Basis Technology, where she led the mobile device exploitation efforts in support of the U.S. Government. She also worked as a forensic examiner at Stroz Friedberg and the U.S. State Department Computer Investigations and Forensics Lab, where she focused her efforts on high profiles cases. Heather co-authored Practical Mobile Forensics and various white papers, presented at leading conferences, and instructed classes focused on Mac forensics, mobile device forensics, and computer forensics to practitioners in the field. Heather maintains www.smarterforensics.com where she blogs and hosts work from the digital forensics community.
2015-02-07 00:40:50
source
Gloss