I Built an Android SMS Forensics Tool… Then Things Got Weird

In this deep dive into Android forensics, we walk through the end-to-end process of extracting and visualizing SMS data from the Android Telephony App. Starting with an encrypted backup, we demonstrate how to use the Android Backup Extractor to convert the data into a manageable tar archive. From there, we leverage a series of custom Bash scripts and command-line tools to parse the raw data, culminating in a custom-built sms viewer in the browser that reconstructs the messages into a clean, readable chat format. 📝 In this video, you’ll learn: • How to handle encrypted Android app backups. • Using Android Backup Extractor for data conversion. • Automating forensic parsing with custom Bash scripts. • Building a browser-based UI for chat message visualization. 📱 Backup2Browser https://github.com/DouglasFreshHabian/Backup2Chat/tree/main/Backup2Browser 🗜 ABE https://github.com/nelenkov/android-backup-extractor 👉 YouTube Membership: https://www.youtube.com/channel/UC17VZx3ERdQsNvAvXQYjKKw/join 📌 Mistakes & Corrections: I do my best to be accurate, but mistakes happen. If you spot one, let me know in the comments. I’ll give credit to anyone who catches it. Thanks for helping keep the content accurate! 📢 Disclaimer All demonstrations and techniques shown in this video are performed on devices or data that I personally own or have explicit permission to analyze. This content is provided strictly for educational, research, or legitimate forensic purposes. 🎶 Music Credits Command Line Love by Fresh Forensics 🕘 Timestamps: 00:00 Preview & Intro 01:30 Finding Telephony App 02:05 Creating Encrypted Backup 02:45 Unpacking Backup 03:18 Extracting & Decompressing 04:00 Sorting Messages With jq 05:29 HTML Conversion 07:37 Fresh Forensics USB 08:31 Creating HTML Interface 09:06 Conversation Insertion 10:09 Replacing Text with sed 10:53 Opening SMS Viewer in Browser 12:46 Viewing Conversations 14:31 Switching to Dark Mode 14:41 Keyword Searching 15:31 Exporting Conversations 16:01 Workflow Automation 17:42 Running Bash Script 19:16 What Are Your Thoughts?