Comments on: Origami – Parse, Analyze & Forge PDF Documents http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/ Ethical Hacking, Penetration Testing & Computer Security Tue, 14 Feb 2012 00:17:07 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Sebastian Haensch http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/#comment-159727 Sebastian Haensch Wed, 21 Oct 2009 21:41:17 +0000 http://www.darknet.org.uk/?p=2169#comment-159727 everyone was an amateur once..... even you detection routines trigger on hack tools like this since they contain exploit code or can be used for harmfull actions. it's a common behavior. i talked to my guy at panda labs today, he was suprised that panda actually reports a virus.test.string instead of exploit.code, somethin wrong but nothin to worry about it will be detected as hacktool by panda soon everyone was an amateur once….. even you

detection routines trigger on hack tools like this since they contain exploit code or can be used for harmfull actions. it’s a common behavior.

i talked to my guy at panda labs today, he was suprised that panda actually reports a virus.test.string instead of exploit.code, somethin wrong but nothin to worry about it will be detected as hacktool by panda soon

]]> By: Rishabh Dangwal http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/#comment-159701 Rishabh Dangwal Wed, 21 Oct 2009 12:27:38 +0000 http://www.darknet.org.uk/?p=2169#comment-159701 amateurs... amateurs…

]]> By: M http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/#comment-159699 M Wed, 21 Oct 2009 11:49:55 +0000 http://www.darknet.org.uk/?p=2169#comment-159699 What's a moebius strip in this context? What’s a moebius strip in this context?

]]> By: Darknet http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/#comment-159683 Darknet Wed, 21 Oct 2009 03:09:02 +0000 http://www.darknet.org.uk/?p=2169#comment-159683 It's a PDF exploitation tool and you guys are questioning why AV detects a PDF exploit inside, you baffle me really. It’s a PDF exploitation tool and you guys are questioning why AV detects a PDF exploit inside, you baffle me really.

]]> By: K.P. http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/#comment-159682 K.P. Wed, 21 Oct 2009 02:15:59 +0000 http://www.darknet.org.uk/?p=2169#comment-159682 Avast reports JS:Pdfka-FS exploit ?! Whatsup? Avast reports JS:Pdfka-FS exploit ?!

Whatsup?

]]> By: Sebastian Haensch http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/#comment-159669 Sebastian Haensch Tue, 20 Oct 2009 15:18:44 +0000 http://www.darknet.org.uk/?p=2169#comment-159669 Panda reports Eicar.Mod thats funny... EICAR: http://en.wikipedia.org/wiki/EICAR_test_file I use this string sometimes during security audits. Panda reports the string as Eicar.Mod I havn't looked trough the code but I wonder if it contains the EICAR string or what hack Panda is trying to tell us here :) Panda reports Eicar.Mod thats funny…

EICAR: http://en.wikipedia.org/wiki/EICAR_test_file
I use this string sometimes during security audits. Panda reports the string as Eicar.Mod

I havn’t looked trough the code but I wonder if it contains the EICAR string or what hack Panda is trying to tell us here :)

]]> By: anonymous http://www.darknet.org.uk/2009/10/origami-parse-analyze-forge-pdf-documents/#comment-159667 anonymous Tue, 20 Oct 2009 15:00:09 +0000 http://www.darknet.org.uk/?p=2169#comment-159667 clamav reports this containts a virus. http://www.virustotal.com/analisis/03d625dd6742e83e1cf1e7aada8ac8204c837386922d724032600a741c8dd32d-1256051167 clamav reports this containts a virus.

http://www.virustotal.com/analisis/03d625dd6742e83e1cf1e7aada8ac8204c837386922d724032600a741c8dd32d-1256051167

]]>