-
Notifications
You must be signed in to change notification settings - Fork 1
Investigate PDF files
Peter Reuterås edited this page Nov 11, 2024
·
12 revisions
There are a couple of tools available in dfirws to investigate PDF files. Some of them are:
There is a Jupyter Notebook available to analyse PDF files.
- You can see this local pdf of the article How to Analyze Malicious PDF Files by Intezer.
- DFIR pdf analysis by neolea
- PDF Object Streams
Getting started and customize dfirws. Also look at Samples to test the included tools.
Use Jupyter notebooks or look at tools and tips to investigate different filetypes
- File system forensics and data recovery
- Investigate Email
- Investigate JavaScript files
- Investigate MSI-files
- Investigate Office files
- Investigate OneNote file
- Investigate PDF files
- Investigate PE files
- Investigate PowerShell
- Network forensics
- Windows forensics
- Available tools
- Examples using Didier Stevens tools
- General tools