PDF Seminar
Wednesday, October 21st
7:30 PM – 208 IST

The goal of this seminar was to raise awareness of increasing use of Adobe PDFs as a vector for other malware. IA Club members learned a little about the history of PDFs as well as the internal workings of the document format. We also explored a few PDF based exploits using /JavaScript and the /OpenAction functions. This seminar gave a very high level overview of buffer overflows and heap sprays and focused more on the practical application of such techniques. We also looked at some detection and mitigation strategies and best practices when dealing with PDFs.

Links
Adobe PDF Seminar Slides
JBIG2Decode Video
PDFID and PDF-Parser Video
Anatomy of Malicious PDFs – Didier Stevens
Hidden Data and Metadata in Adobe PDF Files: Publication Risks and Countermeasures
http://blog.didierstevens.com/