PaulDotCom mailing list archives
Re: evaluation of potentially malicious PDFs
From: Xavier Mertens <xavier () rootshell be>
Date: Sat, 1 Sep 2012 09:12:54 +0200
Hi, Have a look at: - PDFID from Didier Stevens (http://blog.didierstevens.com/2009/03/31/pdfid/) - PeePDF from Jose Miguel Esparza (http://eternal-todo.com/tools/peepdf-pdf-analysis-tool) It's a good start... /x -- Can't sleep, hackers will eat me! PGP Key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x42D006FD51AD7F2C On 31 Aug 2012, at 21:25, Herndon Elliott <alabamatoy () gmail com> wrote:
Learning of lots of avenues of intrusion through PDF documents. Embedded javascript, stego, referenced malware, flash embedding, etc. Does anyone know of a tool which can evaluate a PDF for questionable content without opening it in reader? If no such tool exists, it would seem like a good open-source project for someone interested in coding such things.... Herndon Elliott Madison, Al "You, we -- we own this country. We own it. It is not you owning it, and not politicians owning it. Politicians are employees of ours." ~ Clint Eastwood, RNC speech Aub 30, 2012 _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- evaluation of potentially malicious PDFs Herndon Elliott (Aug 31)
- Re: evaluation of potentially malicious PDFs Marc Wickenden (Sep 01)
- Re: evaluation of potentially malicious PDFs Xavier Mertens (Sep 01)
- Re: evaluation of potentially malicious PDFs Joshua M. Gauthier (Sep 01)
- Re: evaluation of potentially malicious PDFs Hevnsnt (Sep 01)