Guide to backup and analyse iOS devices without iTunes

[U039b]

Hi! This is not an issue.

We published a step-by-step guide to conduct forensic analysis of an iOS device using Docker and MVT. We wrote this guide because people are struggling to analyze iOS devices due to the complexity of the procedure on Linux and the incompatibility of libimobiledevice with the latest iOS versions. Link: https://defensive-lab.agency/2021/07/pegasus-ios-forensic/

This guide will be updated once the PR #16 is merged and will be referring to the official MVT Dockerfile.

NB: I am the co-author of this guide

[botherder]

Thank you for this guide, I pinned this issue for others to find more easily. I did some modifications and merged #16. If you wish to integrate any further instructions to the new documentation page, those would be very welcome.

[U039b]

Thank you, @botherder. Regarding the improvement of the MVT documentation, what do you prefer, I add a link pointing to this guide or move this guide directly into the MVT documentation? BTW, we are working on a video (in English and Arabic) showing the different steps of the guide.

[ghost]

Hi need help with a google account please contact earls0011@outlook.com

[prologic]

The aforementioned URL 502(s).

[Frxhb]

Hello there. Thanks for the instruction. But I fail at step 5 (yes, docker is installed)

I get the following error:

``pi@raspberrypi:~/Pegasus_investigations $ sudo docker build -t mvt . Sending build context to Docker daemon 1.529MB Step 1/21 : FROM ubuntu:20.04 ---> e97786bca973 Step 2/21 : RUN apt update && apt install -y python3 python3-pip libusb-1.0-0-dev && apt install -y wget && apt install -y adb && DEBIAN_FRONTEND=noninteractive apt-get -y install default-jre-headless ---> Running in a6d5c250eb23

WARNING: apt does not have a stable CLI interface. Use with caution in scripts.

Get:1 http://ports.ubuntu.com/ubuntu-ports focal InRelease [265 kB] Get:2 http://ports.ubuntu.com/ubuntu-ports focal-updates InRelease [114 kB] Get:3 http://ports.ubuntu.com/ubuntu-ports focal-backports InRelease [101 kB] Err:1 http://ports.ubuntu.com/ubuntu-ports focal InRelease At least one invalid signature was encountered. Get:4 http://ports.ubuntu.com/ubuntu-ports focal-security InRelease [114 kB] Err:2 http://ports.ubuntu.com/ubuntu-ports focal-updates InRelease At least one invalid signature was encountered. Err:3 http://ports.ubuntu.com/ubuntu-ports focal-backports InRelease At least one invalid signature was encountered. Err:4 http://ports.ubuntu.com/ubuntu-ports focal-security InRelease At least one invalid signature was encountered. Reading package lists... W: GPG error: http://ports.ubuntu.com/ubuntu-ports focal InRelease: At least one invalid signature was encountered. E: The repository 'http://ports.ubuntu.com/ubuntu-ports focal InRelease' is not signed. W: GPG error: http://ports.ubuntu.com/ubuntu-ports focal-updates InRelease: At least one invalid signature was encountered. E: The repository 'http://ports.ubuntu.com/ubuntu-ports focal-updates InRelease' is not signed. W: GPG error: http://ports.ubuntu.com/ubuntu-ports focal-backports InRelease: At least one invalid signature was encountered. E: The repository 'http://ports.ubuntu.com/ubuntu-ports focal-backports InRelease' is not signed. W: GPG error: http://ports.ubuntu.com/ubuntu-ports focal-security InRelease: At least one invalid signature was encountered. E: The repository 'http://ports.ubuntu.com/ubuntu-ports focal-security InRelease' is not signed. The command '/bin/sh -c apt update && apt install -y python3 python3-pip libusb-1.0-0-dev && apt install -y wget && apt install -y adb && DEBIAN_FRONTEND=noninteractive apt-get -y install default-jre-headless' returned a non-zero code: 100``