[Enhancemet] Scripts from PDFs as obervables

pandora-analysis / pandora

Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results

https://pandora.circl.lu/

GNU Affero General Public License v3.0

251 stars 38 forks source link

[Enhancemet] Scripts from PDFs as obervables #686

Open info-sic opened 2 months ago

info-sic commented 2 months ago

What a pity I can't code securely. Otherwise I'd give integrating something like pdfinfo -js a try. Getting active content in PDF as an observable would be nice to have. Sincerely Manu

Rafiot commented 2 months ago

I'll see what I can do.

Rafiot commented 6 days ago

I totally forgot about it, but this module might (partially) solve the issue: https://github.com/pandora-analysis/pandora/commit/92cd0903663a929475c27164e91e2c0edda5d258

info-sic commented 4 days ago

Looks good @Rafiot :)