AnalyzePDF.py

Analyzes PDF files by looking at their characteristics in order to add some intelligence into the determination of them being malicious or benign.

Requirements

* pdfid
* pdfinfo
* yara

Usage

$ AnalyzePDF.py [-h] [-m MOVE] [-y YARARULES] Path

Prouces a high level overview of a PDF to quickly determine if further
analysis is needed based on it's characteristics

positional arguments:
Path                  Path to directory/file(s) to be scanned

optional arguments:
-h, --help            show this help message and exit
-m MOVE, --move MOVE  Directory to move files triggering YARA hits to
-y YARARULES, --yararules YARARULES
						Path to YARA rules. Rules should contain a weighted
						score in the metadata section. (i.e. weight = 3)

Restrictions

Free to use for non-commercial. Give credit where credit is due.

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
extras		extras
AnalyzePDF.py		AnalyzePDF.py
Readme.md		Readme.md
pdf_rules.yara		pdf_rules.yara
pdfid.py		pdfid.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

extras

extras

AnalyzePDF.py

AnalyzePDF.py

Readme.md

Readme.md

pdf_rules.yara

pdf_rules.yara

pdfid.py

pdfid.py

Repository files navigation

AnalyzePDF.py

Requirements

Usage

Restrictions

About

Releases

Packages

Languages

hiddenillusion/AnalyzePDF

Folders and files

Latest commit

History

Repository files navigation

AnalyzePDF.py

Requirements

Usage

Restrictions

About

Resources

Stars

Watchers

Forks

Languages