Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

COMP47370_DataAndDatabasesForensics > 99 - Sample Exam IM > Flashcards

99 - Sample Exam IM Flashcards

1
Q

IM Forensics - Skype

Name the main databases for iOS & Android, the main tables and timestamp used?

A
  1. main.db (iOS / Android)
  2. Accounts
    Contacts
    Transfer
    Calls
    Messages
    CallMembers
    ChatMembers
    Conversations
    Messages
    Participants
    Voicemails
    Videos
  3. unixepoch
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

IM Forensics - WhatsApp

- iOS -

Name the main databases, the main tables and timestamp used?

A
  1. ChatStorage.sqlite & Contacts.sqlite
  2. ChatStorage.sqlite:
    ZWAMESSAGE
    (ZISFROMME: 0=received, 1=sent)
    ZWAMESSAGEWORD
    ZWACHATSESSION
    ZWAGROUPMEMBER
    ZWAGROUPINFO
  3. Contacts.sqlite:
    ZWAMEDIAITEM
    ZWACONTACT
    ZWAPHONE
    ZWASTATUS
  4. NSDate: +978’307’200
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

IM Forensics - WhatsApp

  • Android -

Name the main databases, the main tables and timestamp used?

A
  1. msgstore.db & wa.db
  2. msgstore.db:
  • *chat_list**
  • *Messages**
  • (key_from_me: 0=incoming, 1=outgoing)*

wa.db:

  • *wacontacts**
    3. unixepoch
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

IM Forensics - Viber

  • iOS -

Name the main databases, the main tables and timestamp used?

A
  1. contacts.db
  2. ZABCONTACT
    ZTEXTMESSAGE (ZDATE, ZTEXT)
    ZATTACHMENT
    ZCONVERSATION
    ZPHONENUMBERINDEX
    ZRECENT
    ZSTICKER
    ZSTICKERSPACKAGE
    ZVIBERLOCATION
  3. NSDate: +978’307’200
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

IM Forensics - Viber

  • Android -

Name the main databases, the main tables and timestamp used?

A
  1. viber_data & viber_messages
  2. viber_data:
    calls
    phonebookcontact
    phonebookdata
    vibernumbers
    viber_messages:
    Messages
    (msg delivery status: 1=sent, 2=delivered; type: 0 = incoming, 1=outgoing)
    participants
    threads
  3. unixepoch
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

IM Forensics - Skype

Where are the database files located for macOS and Android?

A

macOS: /Users/USERNAME/Library/Application Support/Skype/USERNAME/

Android: /data/data/com.skype.raider/files/USERNAME/

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

IM Forensics - WhatsApp

Where are the database files located for iOS and Android?

A

iOS:

  • ChatStorage.sqlite*: /var/mobile/Applications
  • Contacts.sqlite*: /private/var/mobile/Containers/ Shared/AppGroup

Android:

/​data/data/com.whatsapp/

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

IM Forensics - Viber

Where are the database files located for iOS and Android?

A

iOS: /var/mobile/Applications/

Android: /data/data/com.viber.voip/

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

COMP47370_DataAndDatabasesForensics (16 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions