Part of UC3BPR20 2025 - Acquisition and Analysis of Forensic Artefacts in a Smart Home Environment: A Study in IoT Forensics.
The SlyFox IoT Sleuth (SFHPCBA01) prototype has been developed as a forensic acquisition tool for Homey Pro (and other RPI CM4-based devices), based on the acquisition process described in github.com/oeeve/UC3BPR20.
A comprehensive IoT forensics dataset based on a purpose-built testbed consisting of the Homey Pro (2023), the Homey Android application and a selection of Zigbee sensors and acutators has been made available at github.com/oeeve/UC3BPR20 to support future research, training, and testing in IoT forensics.
| Application | SHA-256 |
|---|---|
TBA |
TBA
TBA
| ID | Model | Description | DS |
|---|---|---|---|
| P1,P2 | DF40C-100DS-0.4V(51) | Hirose 100-pin connectors, used by the CM4. | 1 |
| J1 | TE 2345986-1 | USB-C connector to interface with host / lab PC. | 2 |
| SW1 | CL-SB-12B | Latching-switch to pull \texttt{nRPIBOOT} to ground and force eMMC USB boot. | 3 |
| R1,R2,R3 | CRCW06031K00FKEAC | 0603 1K resistors. | 4 |
| R4,R5 | CRCW06035K11FKEAC | 0603 5k1 pulldown resistors. Set to keep CC1 and CC2 on J1 permanent low. This configuration defines J1 as a device-only, USB 2.0 only interface. | 5 |
| C1 | 6SVPC330M | 330 µF electrolyte PHA capacitor. Inrush protection and bulk decoupling on VBUS, required on USB downstream devices. | 6 |
| U1,U2 | 74LVC1G07 | Open drain and voltage-level controller. When PI_LED_nPWR is low, it will pull to ground and activate LED 1 / 2. |
7 |
| LED1 | 150060RS75000 | 0603 LED. Connected to U1 and PI LED nPWR CM4's power signal. Lights red when CM4 is powered on. |
8 |
| LED2 | 150060VS75000 | 0603 LED. Connected to U2 and PI nLED Activity CM4's storage access indicator, blinking green when the eMMC is read or written to. |
9 |
| LED3 | 150060VS75000 | 0603 LED. Connected to ground through SW1, and lights green when \texttt{nRPIBOOT} is pulled low, thus set in USB boot mode. | 9 |
TBA
Until next time...
