This week we have been working on creating the guide for the Cellebrite UFED Pro and the UFED Physical Analyzer. The guides we created are meant to layout the information that we would like to teach law enforcement agencies during a two day class. In our outline we created 6 separate topics that we wanted to cover:
1) Introduction – We want to give the officers a brief introduction on what mobile device forensics is and how it is much different from traditional computer forensics. We also wanted to give them a brief introduction on what the Cellebrite UFED device is and what it can do as well as teaching them what data extraction is and the different types of data extraction that the Cellebrite is capable of doing. Then, we wanted to give them a brief introduction on the different types of network technologies (FDMA,TDMA, CDMA, GSM; IDEN) and how they work.
2) Cellebrite Layout – We want to give the police officers a guide on how the Cellebrite is laid out and what each of the different buttons and ports meant on the device. We also wanted to teach them how to navigate through the main menu and give them a guide on the different options that Cellebrite provides.
3) Logical Extraction – We want to teach the officers what a logical extraction is (and what it isn’t), why it is important to a forensic examiner, the data an examiner can get (SIM Memory, Phonebook, Call Logs, Images, and more), and the different methods of logical extraction of a mobile device.
4) UFED Physical Analyzer – We want to teach the officers what the UFED Physical Analyzer (Cellebrite software) is and what data it can extract, as well as how it is different from the Cellebrite UFED hardware.
.jpg)
5) Reporting – We want to provide a guide to the officers that will show what types of reports Cellebrite is capable of producing (both hardware and software) and how to obtain and read the reports.
6) Practical Exercises – Since this guide is laying out a two day class, we would like to include practical exercizes to teach to the officers so they can practice what he have taught them.
All of the interns at the LCDI have been working on making reports for each of these 6 different topics as well as their other projects. With all of the reports that we create, we hope to put all of the information together and turn it into an easy-to-read guide that the officers will have access to. We then plan on making powerpoint presentations summing up each different section as well as tutorials for most of the sections. So far, the interns dedicated 2 hours of their time each day working on parts of each section. The team lead, Colby Lahaie, has also been working on creating reports/tutorials for the project as well as reviewing all of the interns reports. This has dramatically helped speed up the project and will help Colby complete the project by the deadline, July 1st.
–Colby Lahaie