Click here to Skip to main content
15,887,683 members
Search within:


How to find events in pdf while uploading
Please Sign up or sign in to vote.
0.00/5 (No votes)
See more:
PDF
event
itextsharp
I have several malicious pdfs file which execute some event(JS perhaps) while opening. I want to detect all such pdfs with any event attached to it. Also is there a way where we can detect a malicious pdf while uploading in Web application.

What I have tried:

Reading the content header to check if anything added. Also tried iTextSharp to check if any JavaScript attached or the pdf is tempered.
Posted
Add a Solution
Comments
David_Wimbley 7-Jul-17 0:14am    
I think you need to clarify or rethink your approach. In the process of uploading a file, you want to know if anything malicious is in that file? How do you read a file if you don't have all the bytes? If you stopped the process mid upload, pretty sure you'd run into corrupt file errors or what not.

Maybe you meant once its uploaded but prior to it being opened by a user? If so, i'm sure you can use something like itextsharp to see if there is any javascript in the PDF. But even then, what would you clarify as malicious? Just say all javascript is malicious?
[no name] 7-Jul-17 4:53am    
Thanks for your reply, David!

I’m not too sure whether we might end-up with corrupted file while reading, as we’ll close and terminate the read stream without changing anything in the original file or make a backup upfront.

As for as the second approach is considered, I can go for validating the PDF once uploaded, if I can notify the user immediately.

I have one malicious file which opens a save window when opened. I tried to validate the same with iText (using c#) but could not find and JavaScript/Events or tampering sign.

Finally, by malicious I meant a) The pdf should not have any event/Javascript attached to it like OnDocumentOpen, OnDocumentClose etc. b) The pdf should not have any trace of UNC path (usually attached when save by network printer as PDF or Scanned).

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

  Print Answers RSS
Top Experts
Last 24hrsThis month
Related Questions
couldnt find path for image in pdf uploader
Open uploaded PDF and Excel file in Browser
server path to upload the pdf file.
how to upload pdf link in news page?
How to find candidate email Id from a resume (word or pdf file) in asp.net during bulk upload
What is the best way to work with editable PDF files uploaded at server with MVC project?
Mvc pdf file upload in MVC C#
How to upload and download pdf in mysql database on VB.NET
How to preview PDF file in jsf before upload
uploaded PDF file preview

Advertise
Privacy
Cookies
Terms of Use
Last Updated 6 Jul 2017
Layout: fixed | fluid
Copyright © CodeProject, 1999-2024
All Rights Reserved.

Web02 2.8:2024-04-02:1

CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900