Reducing the threat of PDF files

unplugmaverick

Hi, recently I've realized just how dangerous PDF files are, and the only real threat reduction tools (besides GOS' own sandboxing, which only works in Android and doesn't fundamentally change the file) I've come across are poppler and QubesOS' PDF Converter, both of which, if I understand correctly, convert the PDF into a new one through rasterization.

I have to work with PDF's downloaded from the internet, and although I always scan them through VirusTotal, things like IP grabbers are not considered a real threat and something rather common.

I don't understand how to install poppler, and installing QubesOS in a VM just for this is a bit of a hassle. Do you know of any other alternatives (fow Windows or Android)? Would opening a PDF on Photoshop (in a disposable VM) and exporting it again do the trick?

DeletedUser88

unplugmaverick GrapheneOS` PDF Viewer is the most secure option. You can turn off WebView JIT to further harden it.

unplugmaverick

DeletedUser88 Although I agree that it probably is, it's not the solution I'm looking for. If I ever need to open the PDF in an environment that is not GOS, the PDF could still prove to be harmful. What I'm after is changing the file itself.

DeletedUser88

unplugmaverick ah, look into Dangerzone.

unplugmaverick

DeletedUser88 Funnily enough, before making this post I was precisely looking for Dangerzone but I couldn't remember the name. Thank you so much!