{"id":269,"date":"2022-04-21T00:00:22","date_gmt":"2022-04-20T22:00:22","guid":{"rendered":"https:\/\/linowebserver.org\/?p=269"},"modified":"2022-04-21T00:16:59","modified_gmt":"2022-04-20T22:16:59","slug":"android-quick-forensic","status":"publish","type":"post","link":"https:\/\/linowebserver.org\/index.php\/2022\/04\/21\/android-quick-forensic\/","title":{"rendered":"Android Quick Forensic"},"content":{"rendered":"\n

helps quickly gathering forensic evidence from Android devices, in order to identify potential traces of compromise.<\/p>\n\n\n\n

The following data can be extracted:<\/p>\n\n\n\n

  1. A list of all packages installed and related distribution files<\/li>
  2. (Optional) Copy of all installed APKs or of only those not marked as system apps<\/li>
  3. The output of the dumpsys shell command, providing diagnostic information about the device<\/li>
  4. The output of the getprop shell command, providing build information and configuration parameters<\/li>
  5. All system settings<\/li>
  6. The output of the ps shell command, providing a list of all running processes<\/li>
  7. (Optional) A backup of SMS and MMS messages<\/li><\/ol>\n\n\n\n
    \n\n\n\n

    Download here: https:\/\/github.com\/botherder\/androidqf<\/a><\/p>\n\n\n\n

    Disclaimer: This project was created for educational purposes and should not be used in environments without legal authorization.
    <\/p>\n\n\n\n

    \n","protected":false},"excerpt":{"rendered":"

    helps quickly gathering forensic evidence from Android devices, in order to identify potential traces of compromise. The following data can be extracted: A list of all packages installed and related distribution files (Optional) Copy of all installed APKs or of only those not marked as system apps The output of the dumpsys shell command, providing […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[65,11,13,66,12,59],"tags":[30,46,21,26,28,23,45,44,48,49,25,47,42,43,64,29,24,67],"class_list":["post-269","post","type-post","status-publish","format-standard","hentry","category-android","category-cybersecurity","category-kali-linux","category-linux-3","category-pentesting","category-windows-2","tag-android-2","tag-bugbounty","tag-cybersecurity","tag-cybersecurityawareness-2","tag-cybersecuritynews-2","tag-cybersecuritytraining-2","tag-ethicalhacking","tag-ethicalhackingonlinetraining","tag-hackers","tag-hacking","tag-informationsecurity-2","tag-informationtechnology","tag-infosec","tag-infosecurity","tag-kalilinux","tag-linux-2","tag-pentesting-2","tag-windows-3"],"_links":{"self":[{"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/posts\/269","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/comments?post=269"}],"version-history":[{"count":2,"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/posts\/269\/revisions"}],"predecessor-version":[{"id":276,"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/posts\/269\/revisions\/276"}],"wp:attachment":[{"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/media?parent=269"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/categories?post=269"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/linowebserver.org\/index.php\/wp-json\/wp\/v2\/tags?post=269"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}