TY  - CHAP
A1  - Broenner, Simon
A1  - Höfken, Hans-Wilhelm
A1  - Schuba, Marko
T1  - Streamlining extraction and analysis of android RAM images
T2  - Proceedings of the 2nd International Conference on Information Systems Security and Privacy - ICISSP
N2  - The Android operating system powers the majority of the world’s mobile devices and has been becoming increasingly important in day-to-day digital forensics. Therefore, technicians and analysts are in need of reliable methods for extracting and analyzing memory images from live Android systems. This paper takes different existing, extraction methods and derives a universal, reproducible, reliably documented method for both extraction and analysis. In addition the VOLIX II front-end for the Volatility Framework is extended with additional functionality to make the analysis of Android memory images easier for technically non-adept users.
Y1  - 2016
SN  - 978-989-758-167-0
U6  - https://doi.org/10.5220/0005652802550264
SP  - 255
EP  - 264
PB  - SciTePress
CY  - Setúbal
ER  -