You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Micah Lee 7acc6ebafa
Merge pull request #64 from SaptakS/patch-1
1 week ago
.circleci Allow fedora to use either docker or docker-ce 3 weeks ago
assets Add dangerzone document icon 2 months ago
dangerzone Version bump to 0.1.1 2 weeks ago
dev_scripts This creates a separate script dangerzone-container which is a wrapper for running the container. This lets us run dangerzone as unprivileged, but dangerzone-container as privileged, to avoid adding the user to the dangerzone group. 3 weeks ago
install Update fedora build script 2 weeks ago
share Restart and enable docker.service instead of just docker 3 weeks ago
test_docs Allow opening docm files 1 month ago
.gitignore Commit the pyinstaller.spec, including CFBundleDocumentTypes array to open all document formats 2 months ago
BUILD.md Update BUILD.md with tiny typo fixes 2 weeks ago
CHANGELOG.md Version bump to 0.1.1.dev1 3 weeks ago
LICENSE Initial commit 3 months ago
README.md Update readme 3 weeks ago
RELEASE.md Update release documentation 2 weeks ago
poetry.lock In Windows, disable opening of safe PDF, make saving PDF required, and after safe PDF has been created, open Windows explorer with the safe PDF selected 1 month ago
pyproject.toml Version bump to 0.1.1 2 weeks ago
setup.py This creates a separate script dangerzone-container which is a wrapper for running the container. This lets us run dangerzone as unprivileged, but dangerzone-container as privileged, to avoid adding the user to the dangerzone group. 3 weeks ago
stdeb.cfg Allow dependency on docker-ce package 3 weeks ago

README.md

dangerzone

Take potentially dangerous PDFs, office documents, or images and convert them to a safe PDF.

Screenshot

Dangerzone works like this: You give it a document that you don’t know if you can trust (for example, an email attachment). Inside of a sandbox, dangerzone converts the document to a PDF (if it isn’t already one), and then converts the PDF into raw pixel data: a huge list of of RGB color values for each page. Then, in a separate sandbox, dangerzone takes this pixel data and converts it back into a PDF.

Read more about dangerzone in the blog post Dangerzone: Working With Suspicious Documents Without Getting Hacked.

Getting started

Some features

  • Sandboxes don’t have network access, so if a malicious document can compromise one, it can’t phone home
  • Dangerzone can optionally OCR the safe PDFs it creates, so it will have a text layer again
  • Dangerzone compresses the safe PDF to reduce file size
  • After converting, dangerzone lets you open the safe PDF in the PDF viewer of your choice, which allows you to open PDFs and office docs in dangerzone by default so you never accidentally open a dangerous document

Dangerzone can convert these types of document into safe PDFs:

  • PDF (.pdf)
  • Microsoft Word (.docx, .doc)
  • Microsoft Excel (.xlsx, .xls)
  • Microsoft PowerPoint (.pptx, .ppt)
  • ODF Text (.odt)
  • ODF Spreadsheet (.ods)
  • ODF Presentation (.odp)
  • ODF Graphics (.odg)
  • Jpeg (.jpg, .jpeg)
  • GIF (.gif)
  • PNG (.png)
  • TIFF (.tif, .tiff)

Dangerzone was inspired by Qubes trusted PDF, but it works in non-Qubes operating systems. It uses containers as sandboxes instead of virtual machines (using Docker for macOS, Windows, and Debian/Ubuntu, and podman for Fedora).

Set up a development environment by following these instructions.

The git repository for the container is called dangerzone-converter.