pdfalyzer
rich
Our great sponsors
pdfalyzer | rich | |
---|---|---|
8 | 148 | |
220 | 47,088 | |
- | 1.1% | |
8.3 | 8.0 | |
20 days ago | 1 day ago | |
Python | Python | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pdfalyzer
-
Are there any PDF specific YARA rules you know of that are not collected in The Pdfalyzer repo yet?
Direct link to the folder with 3 .yara files compiling a bunch of YARA rule sources. Looking for anything not represented here, or even ideas for such.
-
The Pdfalyzer is a tool for visualizing the inner tree structure of a PDF in large and colorful diagrams as well as scanning its internals for suspicious content
The Pdfalyzer is a command line tool (paralyze) as well as a library for working with, visualizing, and scanning the contents of a PDF. Motivation for the project was personal: I got hacked by a PDF that turned out to be hiding its maleficent instructions inside the font binary where it was missed by modern malware scanners (twitter thread) (more details)
-
The Yaralyzer is a new tool for visualizing / force decoding YARA and regular expression matches in binary and text
A few weeks ago I made a post here about a PDF that evaded all malware detection and caused a security breach, almost certainly through PDF instructions hidden inside of an Adobe Type1 Font binary stream embedded within a PDF. At the time I posted a link to a tool I wrote called The Pdfalyzer that diagrams a PDF's internal and scans for various suspect content.
- Any useful cybersecurity software under $5k?
-
Novel PDF malware: injecting JavaScript into the encrypted section of Adobe Type 1 font binaries is not detectable by malware scanners and doesn't interfere with decryption/decompilation of the font (along with a new tool for malicious PDF analysis)
I dramatically scaled up the binary data scouring and visualization in the pdfalyzer... can rip through every backtick/frontslash/single or double quoted/etc etc set of bytes in the binaries and try a bunch of aggressive approaches to force decode them.
-
Novel (?) PDF attack (and a new PDF visualization/threat assessment tool): injecting JavaScript into the encrypted section of Adobe Type 1 font binaries is not detectable by malware scanners (nor does it interfere with the decryption of the font)
The tool is the the pdfalyzer; I just open sourced it. Meant to fill in some gaps around pdf-parser.py and the rest of Didier Stevens's malicious PDF toolkit. Makes pretty charts, previews binary data, and (most importantly) digs through PDF font binaries for potentially executable stuff. Example output can be seen at the GitHub link.
rich
- Rich is a Python library for rich text and beautiful formatting in the terminal
-
Neat Parallel Output in Python
There is an open issue [1] on GitHub to make it more modular and get rid of markdown and syntax highlighting but I have no hope for rich to get more minimal.
[1]: https://github.com/Textualize/rich/issues/2277
-
Ask HN: Programmers and Technologists in Scotland
I hope he doesn't mind, but the creator of Rich and Textualize is a good guy, and Scottish: https://www.willmcgugan.com/about/
https://www.textualize.io/
https://github.com/Textualize/rich
-
Python 3.12
They keep getting improved error messaging and this is one of my favorite features. But I'd love if we could get some real rich text. Idk if anyone else uses rich, but it has infected all my programs now. Not just to print with colors, but because it makes debugging so much easier. Not just print(f"{var=}") but the handler[0,1]. Color is so important to these types of things and so is formatting. Plus, the progress bars are nice and have almost completely replaced tqdm for me[2]. They're just easier and prettier.
[0] https://rich.readthedocs.io/en/stable/logging.html
[1] Try this example: https://github.com/Textualize/rich/blob/master/examples/exce...
[2] Side note: does anyone know how to get these properly working when using DDP with pytorch? I get flickering when using this and I think it is actually down to a pytorch issue and how they're handling their loggers and flushing the screen. I know pytorch doesn't want to depend on rich, but hey, pip uses rich so why shouldn't everyone?
-
colors.crumb - first Crumb usable. Extending Crumb with basic terminal styling and RGB, HEX, ANSI conversion functions.
colors.crumb extends Crumb with basic terminal styling functions and RGB, HEX, ANSI conversion functions. It is in the realm of JavaScript's chalk and Python's rich but slightly more functional 😉.
-
Textual: Rapid Application Development Framework for Python
I am working on a new python project and one of the first things I added was https://github.com/Textualize/rich because of how easy it is to make things look good in the terminal.
-
What are you rewriting in rust?
I am not rewriting anything but I'd love to have a library like `rich` in Rust: https://github.com/textualize/rich
-
Things to do with standalone script
Add some cool-looking stuff to your output with rich.
-
I made a library for making user terminal input really really pretty!
You might consider taking inspiration from the rich module. In particular, I like how rich supports inline color theming which seems much more cumbersome in your framework, requiring the use of context managers as well as familiarity with how your framework structures color objects. Other than that though, I'm impressed!
-
coBib 4.0: a modern UI using Textualize libraries
Today I released coBib 4.0, my console bibliography manager written in Python, which now uses rich and textual to provide a cohesive and modern user experience in both its CLI and TUI.
What are some alternatives?
peepdf - Powerful Python tool to analyze PDF documents
tqdm - :zap: A Fast, Extensible Progress Bar for Python and CLI
Malware-IOCs
colorama - Simple cross-platform colored terminal text in Python
pypdfium2 - Python bindings to PDFium
python-prompt-toolkit - Library for building powerful interactive command line applications in Python
DidierStevensSuite - Please no pull requests for this repository. Thanks!
textual - The lean application framework for Python. Build sophisticated user interfaces with a simple Python API. Run your apps in the terminal and a web browser.
SysmonForLinux
blessed - Blessed is an easy, practical library for making python terminal apps
CyberPipe - An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
alive-progress - A new kind of Progress Bar, with real-time throughput, ETA, and very cool animations!