Category Archives: iPhone

The Importance of Forensic Tools Validation

I recently finished consulting on a rather high profile case, and once again found myself spending almost as much time correcting reports from third party forensic tools vendors as I did analyzing actual evidence. It’s even sadder that I charged … Continue reading

Posted in Forensics, iPhone | Comments Off

Journal Paper Published

The International Journal of Digital Forensics and Incident Response has formally accepted and published my paper titled Identifying Back Doors, Attack Points, and Surveillance Mechanisms in iOS Devices. This paper is a compendium of services and mechanisms used by many … Continue reading

Posted in Forensics, iPhone, Security | Comments Off

Forensics Tools: Stop Miscalculating iOS Usage Analytics!

There are some great forensics tools out there… and also some really crummy ones. I’ve found an incredible amount of wrong information in the often 500+ page reports some of these tools crank out, and often times the accuracy of … Continue reading

Posted in Forensics, iPhone | Comments Off

Counter-Forensics: Pair-Lock Your iOS 7 Device with Apple’s Configurator

As it turns out, the same mechanism that provides your iOS 7 device with a potential back door can also be used to help secure your device should it ever fall into the wrong hands. This article is a brief … Continue reading

Posted in Forensics, iPhone, Security | Comments Off

Fingerprint Reader / PIN Bypass Backdoor for Enterprises Built Into iOS 7

With iOS 7 and the new 5s come a few new security mechanisms, including a snazzy fingerprint reader and a built-in “trust” mechanism to help prevent juice jacking. Most people aren’t aware, however, that with so much new consumer security … Continue reading

Posted in Forensics, iPhone, Security | Comments Off

Ballistic 4.4 Brings iOS 7 Support

Ballistic 4.4 is now pending approval in the App Store, and brings with it support for iOS 7′s new flat user interface. When running iOS 4, 5, or 6, Ballistic will continue to work and look like it always has. … Continue reading

Posted in iPhone | Comments Off

Injecting Reveal With MobileSubstrate

Reveal is a cool prototyping tool allowing you to perform runtime inspection of an iOS application. At the moment, its functionality revolved primarily around user interface design, allowing you to manage user interface objects and their behavior. It is my … Continue reading

Posted in iPhone | Leave a comment

How Juice Jacking Works, and Why It’s a Threat

How ironic that only a week or two after posting my article How to Pair-Lock Your iOS Device, we would see this talk coming out of Black Hat 2013, demonstrating how juice jacking can be used to install malicious software. The … Continue reading

Posted in Forensics, iPhone, Security | Leave a comment

How to Pair-Lock Your iOS Device

You know that saying, that you’ve slept with every partner that your partner has ever slept with? The same is true of your iPhone; not sex of course, but pairing. If you’re not familiar with how pairing works on your … Continue reading

Posted in Forensics, iPhone, Security | Leave a comment

Free Download: iOS Forensic Investigative Methods

Given the vast amount of loose knowledge now out there in the community, and the increasing number of commercial tools available to conduct both law enforcement and private sector acquisition of an iOS device, I’ve decided to make my law … Continue reading

Posted in Forensics, iPhone | Leave a comment