The PinePhone is one of the first true Linux-based smartphone projects that has released mobile devices, available to the general public, with a smartphone-specific variant of Linux pre-flashed onto the device. Although these are very much still in the testing and development phase, there is the prospect of such devices becoming more common in the future, and it's fun to see what data may be stored on a device, where, and how we can acquire it, to work out how it may be useful to a digital forensic investigation if one of these devices was seized as part of a case. I therefore provide a cheatsheet based on my research so far on where data of interest may be stored.

WSL is a powerful tool that allows Bash scripts and Linux programs to be run on a Windows system. This can also be set up on an offline system, which is best practice configuration for forensic workstations and we show you how we've set this up.