Android Anti-forensics: Modifying CyanogenMod

Karlsson, Karl-Johan; Glisson, William Bradley

doi:10.1109/hicss.2014.593

Cited by 14 publications

(11 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The authors used a 5 step methodology to execute experiment; investigate OS modifications, consult Android documents, modified the content providers, created and entered a data set into the phone and performed forensic extractions using Cellebrite and XRY. Used both USB debugging on and off through the use of Android Debugging Bridge [1]. File formats leave room for interpretations.…”

Section: Literature Reviewmentioning

confidence: 99%

“…However they are various Anti-forensic techniques that are available that makes it difficult for an Investigator or Forensic Analyst to acquire reliable data. Some of the antiforensic techniques can be classified as Data Hiding (Encryption, Steganography), Artifact wiping, Trail obfuscation and Attacks against processes and tools [1]. This research proposes a solution to the anti-forensic technique of steganography by designing and developing an application that will detect the presence of stegno data within the android device and then perform logical data acquisition of images, videos and audio files.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Android mobile forensic analyzer for stegno data

Mambodza

NagoorMeeran

2015

2015 International Conference on Circuits, Power and Computing Technologies [ICCPCT-2015]

View full text Add to dashboard Cite

The advancement of technology has led to better and improved service in mobile communication networks. Smartphones are being used by people for social networking, conducting business transactions as well as committing crime. Anti-Forensic compromises the availability of evidence to the forensic process causing problems to the investigator. The aim of this paper is to provide a solution to the anti-forensic technique of steganography by designing and implementation of an application that will scan, hash and analyze for any hidden information on an image, video or audio file on an android device and collect data for digital profiling or investigation.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

mentioning

confidence: 99%

Android mobile forensic analyzer for stegno data

Mambodza

NagoorMeeran

2015

2015 International Conference on Circuits, Power and Computing Technologies [ICCPCT-2015]

View full text Add to dashboard Cite

show abstract

“…These techniques and tools are commonly referred to as anti-forensics and are primarily used to "compromise the availability or usefulness of evidence to the forensic process" [8]. Several recent research studies ( [4], [9], [10], [11], [12], [13]) have investigated the effect and feasible use of antiforensics in the smartphone environment. The first study [4] explored the possibility to create a false digital alibi on a smartphone and thwart investigations.…”

Section: Introductionmentioning

confidence: 99%

Evaluation Framework for Detecting Manipulated Smartphone Data

Pieterse¹,

Olivier²,

Heerden³

2019

SAIEE Afr. Res. J.

View full text Add to dashboard Cite

Ever improving technology allows smartphones to become an integral part of people's lives. The reliance on and ubiquitous use of smartphones render these devices rich sources of data. This data becomes increasingly important when smartphones are linked to criminal or corporate investigations. To erase data and mislead digital forensic investigations, endusers can manipulate the data and change recorded events. This paper investigates the effects of manipulating smartphone data on both the Google Android and Apple iOS platforms. The deployed steps leads to the formulation of a generic process for smartphone data manipulation. To assist digital forensic professionals with the detection of such manipulated smartphone data, this paper introduces an evaluation framework for detecting manipulated smartphone data. The framework uses key traces left behind as a result of the manipulation of smartphone data to construct techniques to detect the changed data. Assessment of the evaluation framework involves three distinct theoretical scenarios that involve the deletion and modification of existing data, as well as a failed attempt to insert fabricated data. The results produced by the evaluation framework suggest the framework can assist with the detection of manipulated smartphone data. The purpose of this research study was to demonstrate the manipulation of smartphone data and present an evaluation framework to detect such manipulated data.

show abstract

“…al., [24] and the suitability of such solutions to problems that have been highlighted in next generation aircraft architectures [19] and in antiforensic situations [13].…”

Section: Secure End-to-end Communicationmentioning

confidence: 99%