Improving PHoneyC----Detecting and Analyzing Malicious PDF attack
by zhanghuilin for The Honeynet Project
Nowadays malicious PDF is a serious Internet security threaten, and its detection and analysis becomes a quite hot research topic. PHoneyC, as a low interactive client-side honeypot, has done well in analyzing malicious HTML pages and also has a module to handle with PDF files, however, this module is not strong enough to analyze complex malicious PDF attack. This proposal discusses the idea to deal with four kinds of malicious PDF attack.