PDF ISG - Inspection and Sanitization Guidance for Portable Document Format and JPG ISG - How to automate Inspection and Sanitization Guidance testing

When (day):
12th - Friday
At:
16:00 - 17:00
Watch
Zoom link will be available very soon



Session Video

Notable logs from the chat during the session

00:32:02 WallabyCurtis: Yara: https://github.com/VirusTotal/yara
yextend: https://github.com/BayshoreNetworks/yextend
“A curated list of awesome YARA rules, tools, and resources.”: https://github.com/InQuest/awesome-yara https://yara.readthedocs.io/en/stable/writingrules.html#regular-expressions
https://www.cs.yale.edu/flint/cs422/doc/art-of-asm/pdf/CH16.PDF
00:43:17 Vinh Tram: http://giflib.sourceforge.net/whatsinagif/bits_and_bytes.html
00:51:35 WallabyCurtis: https://yara.readthedocs.io/en/stable/writingrules.html#regular-expressions

Training Session Video

About this talk:

Portable Document Format (PDF) is one of the most widely used file formats. In this session we’re going to explore ISGs for PDF files which will include inspection and analysis on various elements and objects that are contained within the PDF file structure and how they can be a cause for concern for either hiding sensitive data or attempts to exploit a system. We’ll analyze numerous features in PDF recommendations to mitigate these threats to provide a safer file. Don’t miss your chance to join this fascinating journey!

In this session, we’ll dive into the Inspection and Sanitization Guidance for Portable Document Format. PDF

ISG for PDF
ISGs can be found in this publication repo: https://nsacyber.github.io/publications.html