Difference between pages "Cell phones" and "SMART"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
(Tools)
 
 
Line 1: Line 1:
'''Cell phones''' or '''mobile phones''' are an important target for [[forensic investigator]]s.
+
=SMART=
 
+
== Technologies ==
+
 
   
 
   
* [[CDMA]]
 
* [[TDMA]]
 
* [[GSM]]
 
* [[iDEN]]
 
* [[EDGE]]
 
* [[GPRS]]
 
* [[UMTS]]
 
  
== Hardware ==
+
[http://www.asrdata.com/ Website]
  
* [[RIM BlackBerry]]
 
* [[T-Mobile Sidekick  ]]
 
* [[SIM Cards]]
 
  
== Operating Systems ==
+
=Features=
  
* [[Microsoft PocketPC]]
+
SMART is a software utility that has been designed and optimized to support data forensic practitioners and Information Security personnel in pursuit of their respective duties and goals. The SMART software and methodology have been developed with the intention of integrating technical, legal and end-user requirements into a complete package that enables the user to perform their job most effectively and efficiently.
* [[Microsoft Windows Mobile]]
+
* [[Palm]]
+
* [[RIM BlackBerry]]
+
* [[Symbian]]
+
* [[Linux]]
+
  
== Forensics ==
+
SMART is more than a stand-alone data forensic program. The features of SMART allow it to be used in many scenarios, including:
  
'''Procedures'''
+
    *  "Knock-and-talk" inquiries and investigations
 +
    *  on-site or remote preview of a target system
 +
    *  post mortem analysis of a dead system
 +
    *  testing and verification of other forensic programs
 +
    *  conversion of proprietary "evidence file" formats
 +
    *  baselining of a system
  
* [[Cell Phone Forensics]]
 
* [[SIM Card Forensics]]
 
* [[External Memory Card Forensics]]
 
  
== Tools ==
+
Who Uses SMART?
 +
SMART is currently utilized by:
  
'''Flashers'''
+
    *  Federal, State and local Law Enforcement
* [[UFS Tornado]]
+
    *  U.S. Military and Intelligence Organizations
 +
    *  Accounting Firms
 +
    *  Data forensic examiners
 +
    *  Data recovery specialists
 +
    *  Disaster recovery professionals
 +
    *  Information security professionals
 +
    *  Health care privacy professionals
 +
    *  Internal auditors
 +
    * System Administrators
  
'''Hardware'''
 
* [[ Azimuth RadioProof™ Enclosures]]
 
* [[Radio Frequency (RF) Jammers]]
 
* [[Network Security Solutions Secure Tents]]
 
* [[Network Security Solutions Seizure Bags for Cell Phones/PDAs/Laptops]]
 
* [[Paraben Device Seizure Toolbox]]
 
* [[Paraben Handheld First Responder Kit]]
 
* [[Paraben StrongHold Bag]]
 
  
'''Software'''
+
==File Systems Understood==
* [[BitPIM]]
+
 
* [[Cell Phone Analyzer]]
+
(unknown)
* [[DataPilot Secure View]]
+
 
* [[FloAt's Mobile Agent]]
+
==File Search Facilities==
* [[ForensicMobile]]
+
 
* [[ForensicSIM]]
+
* Lists allocated and unallocated files.
* [[Guidance Software Neutrino]]
+
* Sorts files by type.
* [[iDEN Companion Pro]]
+
* Searches for keywords and regex.
* [[iDEN Media Downloader]]
+
* Registry Viewer
* [[iDEN Phonebook Manager]]
+
 
* [[LogiCube CellDEK]]
+
==Historical Reconstruction==
* [[MicroSystemation .XRY]]
+
 
* [[MOBILedit!]]
+
Can it build timelines and search by creation date?
* [[Oxygen PM II]]
+
 
* [[Paraben Device Seizure]]
+
==Searching Abilities==
* [[Paraben SIM Seizure]]
+
 
* [[Pandora's Box]]
+
* Can use basic keyword searching.  
* [[Quantaq USIMdetective]]
+
 
* [[Quantaq USIMcommander]]
+
==Hash Databases==
* [[Quantaq USIMdetective]]
+
 
* [[Quantaq USIMexplorer]]
+
* SHA
* [[Quantaq USIMprofiler]]
+
* MD5
* [[Quantaq USIMregistrar]]
+
* CRC
* [[TULP2G]]
+
 
 +
 
 +
==Evidence Collection Features==
 +
 
 +
"Just about everything you do is logged in SMART. You can selectively export these log events into a simple HTML report."
 +
 
 +
=History=
 +
 
 +
 +
 
 +
==License Notes==
 +
 
 +
Is it commercial or open source? Are there other licensing options?
 +
 
 +
= External Links =
 +
 +
[http://www.asrdata.com/Website}
 +
 
 +
==External Reviews==

Revision as of 12:34, 21 March 2006

SMART

Website


Features

SMART is a software utility that has been designed and optimized to support data forensic practitioners and Information Security personnel in pursuit of their respective duties and goals. The SMART software and methodology have been developed with the intention of integrating technical, legal and end-user requirements into a complete package that enables the user to perform their job most effectively and efficiently.

SMART is more than a stand-alone data forensic program. The features of SMART allow it to be used in many scenarios, including:

   *  "Knock-and-talk" inquiries and investigations
   *  on-site or remote preview of a target system
   *  post mortem analysis of a dead system
   *  testing and verification of other forensic programs
   *  conversion of proprietary "evidence file" formats
   *  baselining of a system


Who Uses SMART? SMART is currently utilized by:

   *  Federal, State and local Law Enforcement
   *  U.S. Military and Intelligence Organizations
   *  Accounting Firms
   *  Data forensic examiners
   *  Data recovery specialists
   *  Disaster recovery professionals
   *  Information security professionals
   *  Health care privacy professionals
   *  Internal auditors
   *  System Administrators


File Systems Understood

(unknown)

File Search Facilities

  • Lists allocated and unallocated files.
  • Sorts files by type.
  • Searches for keywords and regex.
  • Registry Viewer

Historical Reconstruction

Can it build timelines and search by creation date?

Searching Abilities

  • Can use basic keyword searching.

Hash Databases

  • SHA
  • MD5
  • CRC


Evidence Collection Features

"Just about everything you do is logged in SMART. You can selectively export these log events into a simple HTML report."

History

License Notes

Is it commercial or open source? Are there other licensing options?

External Links

[http://www.asrdata.com/Website}

External Reviews