• About admin

    PDFiD.py Output to JSON

    by  • December 10, 2010 • Uncategorized

    I want to store as much data as possible about this malware being collected, and I realized that a database would be the best idea in storing the data. One of the things I was playing around with in my head was taking these detailed PDFiD scans an...

    Read more →

    Scoring PDFs Based on Malicious Filter

    by  • December 8, 2010 • Uncategorized

    Using the filter I created in the previous postings, I decided to port it over to something more useful. Having a SQL statement is fine on database data, but it is not the most practical method of scanning when doing ad-hoc queries. I needed to le...

    Read more →

    Generic Filter May Be Specific

    by  • December 5, 2010 • Uncategorized

    In my last post I highlighted what I felt to be interesting characteristics on malicious PDF files compared to my random dataset. Towards the end of the post I mentioned the following potential filter based on the identified information: A file ma...

    Read more →