BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//hack-lu-2025//talk//UAJRA9
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-hack-lu-2025-UAJRA9@pretalx.com
DTSTART;TZID=CET:20251023T173000
DTEND;TZID=CET:20251023T180000
DESCRIPTION:Ftguess is an open-source tool designed to identify file format
 s in a more precise and robust way than traditional tools such as file/lib
 magic  and TrID or even the recent Magika\, especially in the context of m
 alware detection and analysis. Indeed in some cases\, those tools may be f
 ooled by specially crafted files or polyglots. \n\nSuch tools are often us
 ed by malware detection and analysis platforms to decide how to process fi
 les. Malware may go undetected if the file format is wrongly identified\, 
 for example if a malicious PDF is processed as an innocuous HTML file.\nFt
 guess implements a new algorithm designed to overcome this issue.\n\nThis 
 presentation will show several real cases of malware wrongly identified by
  malware analysis platforms\, and how ftguess can be used to improve detec
 tion.
DTSTAMP:20260309T083735Z
LOCATION:Europe
SUMMARY:How to better identify (weaponized) file formats with ftguess - Phi
 lippe Lagadec
URL:https://pretalx.com/hack-lu-2025/talk/UAJRA9/
END:VEVENT
END:VCALENDAR