Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place! |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
03-05-2017, 01:33 PM
|
#1
|
|
LQ Newbie
Registered: Feb 2017
Location: Za Warldo
Posts: 9
Rep: 
|
What tool can I use to forensically check a single .pdf
I usually use Autopsy however, Autopsy only allows me to check logical drives or images.
I would like to check a single .pdf that i think is infected.
what tool allows me to do that and how
|
|
|
|
|
03-05-2017, 01:52 PM
|
#2
|
|
Senior Member
Registered: Feb 2011
Location: Massachusetts, USA
Distribution: Fedora
Posts: 4,348
|
To scan one file you can upload it to virustotal.
|
|
|
|
|
03-05-2017, 02:05 PM
|
#3
|
|
LQ Newbie
Registered: Feb 2017
Location: Za Warldo
Posts: 9
Original Poster
Rep:
|
File contains private information I am not allowed to send it outside of the network
I used text editor to check for common terms used in a reverse shell script but I didn't find anything. Still I am not 100% confident.
|
|
|
|
|
03-05-2017, 02:16 PM
|
#4
|
|
LQ Veteran
Registered: Jan 2011
Location: Abingdon, VA
Distribution: Catalina
Posts: 9,374
Rep:
|
|
|
|
|
|
03-06-2017, 10:20 AM
|
#5
|
|
Member
Registered: Sep 2011
Distribution: Puppy
Posts: 601
Rep: 
|
Avast command line scanner??
|
|
|
|
|
03-06-2017, 10:33 AM
|
#6
|
|
Senior Member
Registered: Mar 2009
Location: Earth, unfortunately...
Distribution: Currently: OpenMandriva. Previously: openSUSE, PCLinuxOS, CentOS, among others over the years.
Posts: 3,881
|
Quote:
Originally Posted by cyfix
I usually use Autopsy however, Autopsy only allows me to check logical drives or images.
I would like to check a single .pdf that i think is infected.
what tool allows me to do that and how
|
Do you mean to check, if your PDF file is infected with a virus?? As, it's not all that clear, from your question.
If you are talking about viruses, there are a number of apps, that could do that for you (available for Linux). |
|
|
|
|
03-06-2017, 01:14 PM
|
#7
|
|
Senior Member
Registered: Nov 2005
Location: ...uncanny valley... infinity\1975; (randomly born:) Milwaukee, WI, US( + travel,) Earth&Mars (I wish,) END BORDER$!◣◢┌∩┐ Fe26-E,e...
Distribution: any GPL that work on freest-HW; has been KDE, CLI, Novena-SBC but open.. http://goo.gl/NqgqJx &c ;-)
Posts: 4,888
|
Another  on the subject here...  checking the binary data may be helpful, if you know what to look for ? 
eg:
Okteta
http://virus.wikidot.com/  |
|
|
|
All times are GMT -5. The time now is 01:53 AM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
