Solutions to diagnose PDF files for exploits?

Question

I am downloading a PDF file, and would like to know how to diagnose security vulnerabilities in that file.

Context:

The last version of Google Chrome is giving me the following warning on a PDF download:

Trying to learn more about the alert brings me to this help page, which explains that the alert can be triggered by either

a malicious, unwanted, or uncommon file

or

the website you tried to download the file from has been known to distribute malware.

I would like to sort out which one it is, and am therefore looking for a way to scan the PDF file for potential vulnerabilities.

My guess is that any tool that indicates the existence of executable code in the file would do, but does such a tool exist?

Related: Can a PDF file contain a virus?

Upload the PDF to [VirusTotal](www.virustotal.com) if you can access it. If it is not flagged, then Chrome doesn't like the source; else it's the file (this is in fact, more likely). — Jedi, Jan 03 '17 at 04:50
See https://theinvisiblethings.blogspot.co.uk/2013/02/converting-untrusted-pdfs-into-trusted.html — André Borie, Jan 10 '17 at 12:06

score 1 · Accepted Answer · answered Jan 10 '17 at 11:42

1

peepdf and pdf-parser.py from Didier Stevens. Various online malware scanners which support PDF is good to try either.

answered Jan 10 '17 at 11:42

Pandora

Thank you very much. And your third link includes @Jedi's link to VirusTotal. – Fr. Jan 10 '17 at 11:44
@Fr. Yes, VirustTotal is most well known in online malware scanners which anyone shouldn't forget to mention! – Pandora Jan 10 '17 at 11:46

1 Answers1