Session Video
Notable logs from the chat during the session
00:32:02 WallabyCurtis: Yara: https://github.com/VirusTotal/yara
yextend: https://github.com/BayshoreNetworks/yextend
“A curated list of awesome YARA rules, tools, and resources.”: https://github.com/InQuest/awesome-yara
https://yara.readthedocs.io/en/stable/writingrules.html#regular-expressions
https://www.cs.yale.edu/flint/cs422/doc/art-of-asm/pdf/CH16.PDF
00:43:17 Vinh Tram: http://giflib.sourceforge.net/whatsinagif/bits_and_bytes.html
00:51:35 WallabyCurtis: https://yara.readthedocs.io/en/stable/writingrules.html#regular-expressions
Training Session Video
About this talk:
Portable Document Format (PDF) is one of the most widely used file formats. In this session we’re going to explore ISGs for PDF files which will include inspection and analysis on various elements and objects that are contained within the PDF file structure and how they can be a cause for concern for either hiding sensitive data or attempts to exploit a system. We’ll analyze numerous features in PDF recommendations to mitigate these threats to provide a safer file. Don’t miss your chance to join this fascinating journey!
In this session, we’ll dive into the Inspection and Sanitization Guidance for Portable Document Format. PDF
ISG for PDF
ISGs can be found in this publication repo:
https://nsacyber.github.io/publications.html