Fama is a tool for android extraction and analysis framework with an integrated Autopsy Module. Dump easily user data from a device and generate powerful reports for Autopsy or external applications.
Functionalities
Report Screenshots
Prerequisites
How to use?
The script can be used directly in terminal or as Autopsy module.
Running From Terminal
usage: start.py [-h] [-d DUMP [DUMP ...]] [-p PATH] [-o OUTPUT] [-a] app Forensics Artefacts Analyzer positional arguments: app Application or package to be analyzed <tiktok> or <com.zhiliaoapp.musically> optional arguments: -h, --help show this help message and exit -d DUMP [DUMP ...], --dump DUMP [DUMP ...] Analyze specific(s) dump(s) <20200307_215555 ...> -p PATH, --path PATH Dump app data in path (mount or folder structure) -o OUTPUT, --output OUTPUT Report output path folder -a, --adb Dump app data directly from device with ADB -H, --html Generate HTML report
Running From Autopsy
python_modules
folder.Build An Application Module
Do you need a forensics module for a specific Android application? Follow the instructions here and build a module by yourself.
Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…
If you are working with Linux or writing bash scripts, one of the most common…
What is a bash case statement? A bash case statement is a way to control…
Why Do We Check Files in Bash? When writing a Bash script, you often work…