Xbox 360 Forensics

The book I read to research this post was Xbox 360 forensics by Stephen Bolt et al which is an excellent book which I bought from kindle. This book is primarily for members of the police or organisations like the FBI who may be called upon to carry out a forensic examination of an xbox 360. I really enjoyed reading it & even if you only read it for the information on xbox live I would recommend this book. If an xbox 360 has been stolen, it has a unique identifier chip that as long as it has been registered on xbox live will enable it to be traced back to its original owner. If someone uses xbox there's a good chance that there are messages on his xbox 360 these can be directly from playing games against people on xbox live or emails or social networking sites like facebook. The kind of things a law enforcer might investigate are maybe a paedophile is stalking children on xbox live or maybe someone is trying to find out where he can buy drugs by email. There are 3 major types of filetypes on an xbox 360 which are Con, Pirs & Live. Most of the files exclusive to xbox live are Live files. It has to be mentioned that if you disassemble an xbox 360 hard drive you invalidate your warranty so I don't recommend it. The book contains a tutorial on how to map an xbox 360 hard drive onto a computer. Some of the software they use is EnCase which is used a lot in forensics, Xplorer 360 it's primary use is to unlock hidden levels in games, and wxPIR which is freeware that deconstructs Pir files.