Upload any PDF to extract all metadata, detect embedded JavaScript and hidden actions, find embedded files, extract all URLs and email addresses, and identify malicious PDF structures. Runs 100% in your browser — the file is never uploaded.
Drop a PDF or click to upload
All analysis is local — PDF never leaves your browser
The PDF X-Ray tool performs comprehensive forensic analysis of PDF files without executing any embedded content. PDF is one of the most complex and historically exploited file formats — its specification allows embedding of JavaScript, executables, Flash objects, and other active content that has been weaponized in countless malware campaigns. This tool safely dissects a PDF's structure to expose everything it contains.
Metadata extraction reveals the software used to create the document, the author name, creation and modification timestamps, and whether the document has been digitally signed. Discrepancies between claimed metadata and actual content are common indicators of document forgery. A PDF claiming to be created by Microsoft Word but containing XFA forms (typically used in Adobe-specific workflows) warrants scrutiny.
The URL and URI harvester extracts every embedded link from the PDF — including those hidden in compressed object streams that are invisible to casual inspection. Malicious PDFs frequently contain obfuscated links to phishing sites or malware downloaders. The JavaScript extractor pulls any embedded scripts for manual review, and the tool flags known malware-associated PDF structure patterns.