Loading File Signature Identifier...
Detect file types from magic bytes, hex data, Base64 content, or an uploaded file.
Try sample signatures
Detection result
Full analysis
Identify file types from magic bytes, hex data, Base64 content, or uploaded files using known file signatures.
A file signature identifier checks the first bytes of a file to detect its likely format. These bytes are often called magic bytes or magic numbers. The tool is useful when a file has no extension, the wrong extension, or an unknown format during CTF challenges, digital forensics, malware triage, file upload testing, and general file analysis.
Input:
89 50 4E 47 0D 0A 1A 0A
Output:
1. PNG image Confidence: High Extension: .png MIME type: image/png Notes: Portable Network Graphics image file. File details Input type: hex Size inspected: 8 bytes Magic bytes: 89 50 4E 47 0D 0A 1A 0A ASCII preview: .PNG....
What does a file signature identifier do?
It checks the file header and compares the first bytes against known signatures for formats such as PNG, JPEG, PDF, ZIP, RAR, 7Z, ELF, EXE, SQLite, WebP, MP3, MP4, and other common file types.
What are magic bytes?
Magic bytes are fixed byte patterns found near the beginning of many files. They help software recognize the real file format even when the filename or extension is missing or incorrect.
Can this tool detect files with the wrong extension?
Yes. The tool analyzes the file content instead of trusting the extension. This helps identify renamed files, disguised files, downloaded samples, and unknown files from CTF or forensic tasks.
Why do some results show medium confidence?
Some formats share the same container signature. For example, ZIP, DOCX, XLSX, PPTX, JAR, and APK files can all begin with a ZIP header, so the tool may show a broader container match.
What input formats does the tool support?
You can upload a file or paste hex bytes, Base64 data, or raw content. Hex input is useful when you only have a short file header from a hexdump or forensic note.