mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-28 18:02:38 +02:00

Take potentially dangerous PDFs, office documents, or images and convert them to safe PDFs

Find a file

Micah Lee 4450146028 Version bump to 0.1.5 and update changelog		2021-01-04 15:31:12 -08:00
.circleci	Comment out Ubuntu groovy in CircleCI, because PackageCloud.io does not support it yet	2020-10-30 09:47:51 -07:00
assets	Add dangerzone document icon	2020-01-13 14:10:02 -08:00
dangerzone	Version bump to 0.1.5 and update changelog	2021-01-04 15:31:12 -08:00
dev_scripts	This creates a separate script dangerzone-container which is a wrapper for running the container. This lets us run dangerzone as unprivileged, but dangerzone-container as privileged, to avoid adding the user to the dangerzone group.	2020-03-13 16:49:53 -07:00
install	Fix codesigning	2020-12-30 14:17:03 -08:00
share	Change absolute path of systemctl to /bin/systemctl, so it will work in ubuntu 18.04	2020-04-09 13:58:44 -07:00
test_docs	Allow opening docm files	2020-03-03 19:23:46 +05:30
.gitignore	Build the Wix wxs file on the fly	2020-10-28 12:13:09 -07:00
BUILD.md	Add dangerzone-container as a poetry script, and remove unneeded deps from build instructions	2020-12-30 10:40:59 -08:00
CHANGELOG.md	Version bump to 0.1.5 and update changelog	2021-01-04 15:31:12 -08:00
LICENSE	Initial commit	2020-01-06 12:42:38 -08:00
poetry.lock	Update python deps	2020-12-28 15:22:57 -08:00
pyproject.toml	Version bump to 0.1.5 and update changelog	2021-01-04 15:31:12 -08:00
README.md	Version bump to 0.1.5 and update changelog	2021-01-04 15:31:12 -08:00
RELEASE.md	Update macOS instructions for installing python, and fix how DMG gets created	2020-10-29 15:54:12 -07:00
setup.py	This creates a separate script dangerzone-container which is a wrapper for running the container. This lets us run dangerzone as unprivileged, but dangerzone-container as privileged, to avoid adding the user to the dangerzone group.	2020-03-13 16:49:53 -07:00
stdeb.cfg	Fix CircleCI and test in Fedora	2020-10-29 17:01:47 -07:00

README.md

Dangerzone

Take potentially dangerous PDFs, office documents, or images and convert them to a safe PDF.

Dangerzone works like this: You give it a document that you don't know if you can trust (for example, an email attachment). Inside of a sandbox, Dangerzone converts the document to a PDF (if it isn't already one), and then converts the PDF into raw pixel data: a huge list of of RGB color values for each page. Then, in a separate sandbox, Dangerzone takes this pixel data and converts it back into a PDF.

Read more about Dangerzone in the blog post Dangerzone: Working With Suspicious Documents Without Getting Hacked.

Getting started

Download Dangerzone 0.1.5 for Mac
Download Dangerzone 0.1.5 for Windows
See installing Dangerzone on the wiki for Linux repositories

You can also install Dangerzone for Mac using Homebrew: brew install --cask dangerzone

Some features

Sandboxes don't have network access, so if a malicious document can compromise one, it can't phone home
Dangerzone can optionally OCR the safe PDFs it creates, so it will have a text layer again
Dangerzone compresses the safe PDF to reduce file size
After converting, Dangerzone lets you open the safe PDF in the PDF viewer of your choice, which allows you to open PDFs and office docs in Dangerzone by default so you never accidentally open a dangerous document

Dangerzone can convert these types of document into safe PDFs:

PDF (.pdf)
Microsoft Word (.docx, .doc)
Microsoft Excel (.xlsx, .xls)
Microsoft PowerPoint (.pptx, .ppt)
ODF Text (.odt)
ODF Spreadsheet (.ods)
ODF Presentation (.odp)
ODF Graphics (.odg)
Jpeg (.jpg, .jpeg)
GIF (.gif)
PNG (.png)
TIFF (.tif, .tiff)

Dangerzone was inspired by Qubes trusted PDF, but it works in non-Qubes operating systems. It uses containers as sandboxes instead of virtual machines (using Docker for macOS, Windows, and Debian/Ubuntu, and podman for Fedora).

Set up a development environment by following these instructions.

The git repository for the container is called dangerzone-converter.