Checks file identity
Hashes the file, detects media type, and compares the filename, extension, and observed content.
Malpulver is a developer-first API for static file risk screening. It inspects uploaded files for filename tricks, archive abuse, suspicious document behavior, web payload indicators, executable traits, and byte-level anomalies, then returns a structured verdict and technical JSON response.
Post multipart files to one endpoint and receive a structured scan result.
Get hashes, tags, findings, metadata, detailed analysis objects, raw byte stats, and a final verdict.
Scans archives, Office files, PDFs, HTML, images, PE/ELF binaries, JVM artifacts, APKs, and DEX payloads.
Each Malpulver account gets its own API key and month-based access managed through the hub.
Keep the front door simple: screen files before they move deeper into storage, preview, unpacking, or worker pipelines.
Hashes the file, detects media type, and compares the filename, extension, and observed content.
Looks for archive traversal, macros, PDF actions, hidden iframe behavior, suspicious URL schemes, and more.
Recognizes PE, ELF, class, JAR, APK, and DEX-like content and records format-specific signals.
Use FINE and SUSPICIOUS as routing signals, with findings and tags for review context.
Use the Credits tab in the hub to manage Olexar credits.
From the Settings & Docs tab, spend Olexar credits to add Malpulver active months.
Use your Malpulver API key with /api/ext/scan and get back a structured result.
Get the endpoint, key, response details, and developer examples from the hub.
Create account