Recreating Epstein PDFs from raw encoded attachments

Original Article ↗ Hacker News Discussion ↗

Technical challenge: base64 reconstruction

  • The DOJ scans include printed base64 attachments where “1” and “l” are visually indistinguishable, corrupting the encoded data.
  • Naive brute-forcing all permutations is intractable (thousands of ambiguous characters).
  • People suggest using PDF structure and compression checks to prune the search: step through each ambiguous character, test whether decoding still yields a syntactically valid PDF or valid flate stream, backtracking as needed.
  • Others note this gets much harder in compressed sections where “sane” structure is less obvious.

Proposed tools and methods

  • Suggestions include instrumented PDF decoders, fuzzing frameworks, and coverage-guided tools (e.g. afl) to quickly detect invalid candidates.
  • Some argue one‑off tooling is a good AI use case; others are skeptical of trusting LLM‑generated code or OCR for such precise work.
  • Ideas: use file headers to infer attachment type; use multi-entry human transcription (“double/triple data entry”); train Tesseract on the specific font, though its training workflow is described as painful.
  • Practical PDF tips: don’t rerasterize whole pages; extract embedded images directly with tools like pdfimages or mutool for speed and quality.

What the decoded PDF actually contained

  • Using a custom script (credited to an LLM) plus a cleaned transcription, commenters reconstruct the attachment well enough to read it.
  • It turns out to be an invite for a public charity gala (the Dubin Breast Center second annual benefit, December 2012) with widely reported attendees and performers.
  • People note how mundane this is and question why it was redacted at all; theories range from overbroad keyword redaction (e.g., on “breast” or names) to political embarrassment or distraction.

Redactions, legality, and CSAM risk

  • There is heavy criticism of the DOJ’s handling: slow release, sloppy redactions (e.g., sometimes redacting “don’t,” possibly via a bad regex), and alleged inclusion of CSAM.
  • Several comments warn that if CSAM is indeed present, merely downloading the archive may be illegal in many jurisdictions, regardless of intent; some speculate this may deter distribution, intentionally or not.
  • Others push back that allegations aren’t the same as adjudicated findings, but many examples of alleged broader lawbreaking by the administration are cited.

Broader PDF / transparency discussion

  • Some argue PDFs are inherently messy for safe redaction; even prior administrations resorted to image-only releases to avoid leaks, sacrificing searchability.
  • Alternatives like XPS, DjVu, TIFF, JPEG/PNG are discussed, but most are seen as similarly complex or unsuitable, and commenters emphasize that the core issue is not tools but political will and competence.