This online course will cover one of the most underutilized open source CDMA software applications in the mobile forensic community. Bitpim was developed by Roger Binns and is now updated and upgraded by several python developers in the open source community. During this online course the students will not only be exposed to the interworking of Bitpim, but get to process and extract data utilizing the application online!
Utilization of automated tools has changed the architecture of the forensic examination of a cellular phone. In this online course we will change that by looking into the internal file structure of the cellular phone manually. Attendees will examine file systems to discover date and time locations in text messages and call histories as well as EXIF data, telephone numbers, lock codes and more. How might an examiner determine if a cellular phone took the picture or just received the image via a multi-media message? Attendees to the Cellular Phone Artifacts class will explore these questions and many more that plague our automated examinations. Several pieces of software including Bitpim, WinHex and FTK will be utilized in this online course. This online course does not have a prerequisite and does contain a competency examination at the conclusion of the course.
This online course does not have a prerequisite and does contain a competency examination at the conclusion of the course.