Cellebrite Iron Python (CIP)



5 days
Expert-level course

Course Description

Cellebrite Iron Python (CIP) is a five (5) day expert level course with hands-on, comprehensive lessons using Python. The CIP class is recommended for practitioners familiar with Physical Analyzer. The CIP course is written to fresh users with Python and scripting knowledge and for students seeking first time experience with the Python scripting languages.

By the end of the course, users will receive hands-on experience in recognizing data types, working with function-based essentials, create programs that prompt users for input, use conditional (True/False) logic and Python methods to interpret data from files and provide feedback for reports. Plus, learn basic troubleshooting for your code.

Download CIP Syllabus
Find a CIP Class


Course Content

sidebar image 
Introductory Python Scripting

This module introduces you to scripting using the Python language. Python supports all models of forensics, from mobile, to computers, to networks. 

  • Getting Started
  • Working with various data types
  • Making Decisions with Code
  • Complex Decisions with Code
  • Repeating Events Until Done
  • Remembering Lists
  • How to Save Information in Files
  • Reading from Files
  • Functions
  • Handling Error
sidebar image 
Python Forensic Application

In this module you will apply the skills you just learned into incorporating several scripts into a practical case. You may write your own scripts, change some of the ones provided or both to get the results from your evidence. This enjoyable team exercise lets you expand upon both your forensic and newly honed scripting experience.

sidebar image 
Physical Analyzer and Python

This module focuses on learning the basic Python interpreter used by Physical Analyzer. You will incorporate your newly learned Python skill into reading data from a device extraction and using a basic script to include it in analysed data.

  • Identify the Python functionality within PA
  • Utilize the Python guide for Physical Analyzer
  • Use a script to extract basic information
  • Understand how to incorporate your findings into the Analyzed Data section
sidebar image 
Advanced SQLite

This module focuses on SQLite database structures and using the Python’s SQLite library to interpret and generate a report on your findings.

  • Identify SQLite databases
  • Identify SQLite database structures
  • Explain how data is stored within records
  • Use Python to extract and analyze binary large object (BLOB) data from databases and process the results
  • Use Python to search and extract data from SQLite files found in today’s mobile devices
  • Utilize both Physical Analyzer and open source tools to report on your findings
Last modified: Tuesday, August 24, 2021, 9:29 AM