Dangerzone: Convert PDFs, documents, or images to a safe PDF (opens in new tab)

(github.com)

49 pointspiccirello1y ago6 comments

6 comments

This is a process referred to in government as "Content Disarm and Reconstruction." But I can't stress this enough: if you don't trust the files, you shouldn't be processing them at all locally.

I built a similar tool that converts >300 formats to images in a remote sandbox. https://preview.ninja/

barfbagginus1y ago

How do I safely read them from the remote box, assuming we really expect the box to get compromised?

If the box is compromised and I RDP, I can get mashed by an RDP exploit. If I download the image or pdf, I can get mashed with an image or PDF exploit.

This is why I never trusted the Qubes image/PDF disarm workflow

fsflover1y ago

Qubes OS has a convenient option to convert any PDF or picture into a trusted one, using strong hardware virtualization: https://blog.invisiblethings.org/2013/02/21/converting-untru...

mdaniel1y ago

I don't have experience with Qubes in order to know what the files do, but this repo references two files in a qubes directory: e.g. https://github.com/freedomofpress/dangerzone/blob/v0.6.0/qub...

Alifatisk1y ago

This would be a really cool feature to have in Microsoft powerautomate, so every pdf I receive on outlook funnels through this.

joemazerino1y ago

I use this tool often. I donate to support as well.

j / k navigate · click thread line to collapse