Malpulver
File security API

Upload a file.
Get a malware verdict.

Malpulver is a developer-first API for static file risk screening. It inspects uploaded files for filename tricks, archive abuse, suspicious document behavior, web payload indicators, executable traits, and byte-level anomalies, then returns a structured verdict and technical JSON response.

Join Malpulver Open Hub

Single upload endpoint

Post multipart files to one endpoint and receive a structured scan result.

Structured technical output

Get hashes, tags, findings, metadata, detailed analysis objects, raw byte stats, and a final verdict.

Format-aware static analysis

Scans archives, Office files, PDFs, HTML, images, PE/ELF binaries, JVM artifacts, APKs, and DEX payloads.

Account-scoped API keys

Each Malpulver account gets its own API key and month-based access managed through the hub.

Scan overview

Built for upload-time decisions

Keep the front door simple: screen files before they move deeper into storage, preview, unpacking, or worker pipelines.

Checks file identity

Hashes the file, detects media type, and compares the filename, extension, and observed content.

Inspects risky structures

Looks for archive traversal, macros, PDF actions, hidden iframe behavior, suspicious URL schemes, and more.

Understands executable formats

Recognizes PE, ELF, class, JAR, APK, and DEX-like content and records format-specific signals.

Returns a usable verdict

Use FINE and SUSPICIOUS as routing signals, with findings and tags for review context.

Best use: place Malpulver at your upload edge or quarantine stage, then route suspicious files for review or secondary scanning.
How it works

Three simple steps

1

Top up credits

Use the Credits tab in the hub to manage Olexar credits.

2

Convert credits into months

From the Settings & Docs tab, spend Olexar credits to add Malpulver active months.

3

Send files to the API

Use your Malpulver API key with /api/ext/scan and get back a structured result.

Built for simple integration

Get the endpoint, key, response details, and developer examples from the hub.

Create account