GSoC/GCI Archive
Google Summer of Code 2010 The Honeynet Project

Improving PHoneyC----Detecting and Analyzing Malicious PDF attack

by zhanghuilin for The Honeynet Project

Nowadays malicious PDF is a serious Internet security threaten, and its detection and analysis becomes a quite hot research topic. PHoneyC, as a low interactive client-side honeypot, has done well in analyzing malicious HTML pages and also has a module to handle with PDF files, however, this module is not strong enough to analyze complex malicious PDF attack. This proposal discusses the idea to deal with four kinds of malicious PDF attack.