File Threat Analyzer

Checks performed

Extension match

Magic vs .ext

Double extension

foo.pdf.exe

Embedded script

PDF /JS tag, macros

Shebang on non-script

#! in .png etc.

Very large text

Obfuscation hint

Executable

PE/ELF/Mach-O headers

Frequently Asked Questions

Is this AV?

No. It flags patterns commonly associated with malicious intent.

False positives?

Likely for edge cases — treat as hints, not verdicts.

Common Use Cases

Quick triage

Before opening unknown downloads.

Evidence

Document suspicious indicators.