1 / 17

CELLFOR Social Footprint Analyzer Ben McGee, CISSP, CEH, MCTS DIGITAL FORENSICs

CELLFOR Social Footprint Analyzer Ben McGee, CISSP, CEH, MCTS DIGITAL FORENSICs. Mobile Threat Model Attack Tree. Corporate. Sms, Data, Voice. VPN. GPS RADIO SENSORS OS MICROPHONE CAMERA. TAKE IT TO THE CLOUD!. Experiment - This is Bob. Recon. 1 – Target Recon & Footprinting.

hallie
Download Presentation

CELLFOR Social Footprint Analyzer Ben McGee, CISSP, CEH, MCTS DIGITAL FORENSICs

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CELLFOR Social Footprint AnalyzerBen McGee, CISSP, CEH, MCTSDIGITAL FORENSICs

  2. Mobile Threat ModelAttack Tree Corporate Sms, Data, Voice VPN GPS RADIO SENSORSOS MICROPHONE CAMERA

  3. TAKE IT TO THE CLOUD!

  4. Experiment - This is Bob

  5. Recon 1 – Target Recon & Footprinting 2 – Ask Dr. Google 3 - OSINT 4 – Social Engineering

  6. Search Me

  7. OSINT

  8. Google Street View

  9. What do we know?

  10. Forensic Analysis

  11. DEMO

  12. Clear! Corporate Emails Images Intellectual Property / Documents Contacts, Text Messages, Personal Email contact records: select data1 from data; -- /data/data/com.android.providers.contacts/databases/contacts.db sms/mms records: select address, date, body from sms; -- /data/data/com.android.providers.telephony/mmssms.db calendar records: select title, eventLocation, description, dtstart, dtend, eventTimezone from events; -- /data/data/ mail messages (gmail only?): select * from blah; -- /data/data/com.motorola.motoemail/databases/EmailProvider.db

  13. Oh and the Social Network….. Graph it !!

  14. Slingin’ Code

  15. Recommendations • Have a corporate policy for using personal cell phones for corporate business • Invest in good ‘DoD’ level wipe of phone • Store on to SD Card, not the HD of device • Encrypt your device • Use proximity virtual machines within Device • Work | Home | School • Buy a good wood chipper ?

More Related