Social networking and IM chat applications such as Facebook, Twitter, and WhatsApp reveal sensitive data that could be helpful during the investigation of any case. The analysis is pretty much the same as with any other Android application. Download the data to a forensic workstation and analyze the .db files to find out whether you can unearth any sensitive information. For example, let's look at the Facebook application and try to see what data can be extracted.

First, we extract the /data/data/com.facebook.katana folder and navigate to the databases folder. The fb.db file present under this folder contains the information that is associated with the user's account. The friends_data table contains information about the user's friends' names, along with their phone numbers, email IDs, and dates of birth, as shown in the following screenshot. Similarly, other files can be analyzed to find out whether any sensitive information can be gathered:

Similarly, by analyzing the data present in the /data/data folder, information about the geolocation, calendar events, user notes, and more can be grabbed.