Scribd
Upload
9 views

lab-14-Mobile_App_Investigations_Messaging

This lab involves investigating messaging services using a Pixel 3 image and requires the installation of Virtualbox and Kali 2021.4. Students will analyze various AOSP apps, locate databases, and examine SMS and MMS tables to answer specific questions about message data. A full-screen image of the findings must be submitted as a PDF with specific naming and emailing instructions.

Uploaded by

phuongnxhe181705
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
9 views

lab-14-Mobile_App_Investigations_Messaging

This lab involves investigating messaging services using a Pixel 3 image and requires the installation of Virtualbox and Kali 2021.4. Students will analyze various AOSP apps, locate databases, and examine SMS and MMS tables to answer specific questions about message data. A full-screen image of the findings must be submitted as a PDF with specific naming and emailing instructions.

Uploaded by

phuongnxhe181705
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 7

Lab 14: Mobile_App_Investigations_Messaging

What You Need for this lab


 Install Virtualbox : https://www.virtualbox.org/wiki/Downloads
 Install Kali 2021.4. : https://old.kali.org/kali-images/kali-2021.4/
Notes: Suggest You configure the disk size of Kali VM 80G because the size of each leakage
cases image is 30G+
 Android Open-Source Project Apps :
 https://digitalcorpora.s3.amazonaws.com/corpora/mobile/android_10/Non-
Cellebrite%20Extraction/Pixel%203.zip

Step 1
• Download Pixel 3 image

Verify hashes
hashdeep Pixel\ 3.zip

• unzip to get Pixel 3 image

1
ls 'Pixel 3/data/data/'

Step 2. Investigating Messaging Services


• Show all AOSP Apps/Packages: com.andriod.*

2
• Find the location of Java package

• Find the database location

• Show all tables in the database

3
• sms: message log
• Only system, phone or the default message app can have full access of sms data
• sms_restricted:
• Only contains sent or received messages.
• threads
• Group all messages based on incoming phone numbers and time period?
• Exam sms table structure

• Find clues to answer the question

4
• Which message was received on Jan 29, 2020 around 6:20 pm?
https://www.epochconverter.com/

• Who sent the message?

What table describes conversation?

5
Where to find sender’s phone number?

Exam canonical_addresses table

Which table contains MMS information ?

Part table stores below information:

6
• _id: Distinguish between different attachments of a multimedia message (including
text, picture, audio, video and other formats)
• ct: indicates what type of attachment
• data: indicate where the attachment is stored on the phone
• text: Represents the body of the MMS.

YOU MUST SUBMIT A FULL-SCREEN IMAGE FOR FULL CREDIT!


Save the document with the filename "YOUR NAME Lab 14.pdf", replacing "YOUR
NAME" with your real name.
Email the image to the instructor as an attachment to an e-mail message. Send it
to: [email protected] with a subject line of "Lab 14 From YOUR NAME", replacing "YOUR
NAME" with your real name.

You might also like