Posts

Showing posts with the label hacking learning blog

PDF forensics with Kali Linux : pdfid and pdfparser Forensics

Image
Good eveninggggggg friends. I am very happy and the cause for my happiness is the Hacker Computer School pdf monthly magazine I recently started. The test edition was received positively. But some of the security conscious readers have raised concerns whether this pdf magazine may be booby trapped to hack my readers. So I thought it would be good to make a howto on pdf forensics. By the end of this article, you will be able to tell whether the pdf you received is genuine or malicious. For this howto, I will create a malicious PDF with Metasploit using the following exploit. As is well known, this exploit hides an exe within a PDF file. This PDF file can be sent to our target using any social engineering technique. When the target user clicks on it, we will get reverse_tcp connection. Another file we will be analyzing is the PDF copy of my Hacker computer school monthly magazine. Both of the files are shown below. The first tool will be using is pdfid. Pdfid will scan a file to look f…