See Didier Stevens PDF Tools when examining a PDF file for malware. Avoid rendering a suspicious PDF file.
See his InfoSec Handlers Diary Blog “Encrypted PDFs” for decrypting PDFs.
See Didier Stevens PDF Tools when examining a PDF file for malware. Avoid rendering a suspicious PDF file.
See his InfoSec Handlers Diary Blog “Encrypted PDFs” for decrypting PDFs.
This entry was posted on Saturday, December 23rd, 2017 at 4:47 PM and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.
I haven’t tested virustotal.com’s pdf info section; but, wonder if it’s now doing much of what Steven’s pdf parser does; it does show some of the output that the Steven’s parser shows.
Example: http://www.virustotal.com/#/file/92b1632dbf817e50a04552e355ede7bff13d61ed836cf30175d865221af138af/details > PDF Info section