Dangerzone is a free, open-source Mac app that sanitises hostile documents — PDFs, Word files, spreadsheets, and presentations — by rendering them inside an isolated container and rebuilding them as pixel-perfect, malware-free PDFs.
What is Dangerzone?
Dangerzone is a document-quarantine tool created by the team at Freedom of the Press Foundation. The core idea is radical and effective: instead of trying to detect threats hidden inside a document, it destroys the original entirely and rebuilds a clean copy from scratch. Open a suspicious attachment in Dangerzone and you get back a safe, printable PDF — with no macros, no embedded scripts, no exploit surface.
The technique isn't new to security researchers, but Dangerzone makes it accessible to journalists, lawyers, activists, and anyone else who regularly opens files from untrusted sources. If you've ever hesitated before double-clicking an invoice from a stranger, this app is for you.
What does Dangerzone do best?
Dangerzone's superpower is threat neutralisation through conversion, not detection — it doesn't need to know what a threat is to remove it. The app spins up a sandboxed environment (leveraging Docker or its own internal container runtime), renders every page of the document as a rasterised image, then assembles those images into a fresh PDF. By the time the output lands on your desktop, nothing from the original file structure survives.
- Wide format support: PDFs, .docx, .xlsx, .pptx, .odt, and more are all fair game as inputs.
- Batch processing: drag in a folder of files and walk away; the queue churns through them one by one.
- Offline-first: nothing touches a remote server. The entire conversion happens on your Mac.
- OCR option: if the output PDF needs to be searchable, Dangerzone can run Tesseract over the rasterised pages and embed a text layer.
I've used it for months as a first-pass filter on every external PDF before it goes anywhere near Preview or Acrobat. The conversion takes a minute or two on an Apple Silicon machine, which is a small price for genuine peace of mind.
Is Dangerzone free?
Yes — Dangerzone is completely free and open source (GPLv3), maintained by Freedom of the Press Foundation with community contributions on GitHub. There is no paid tier, no subscription, and no upsell. The only dependency you may need to install separately is Docker Desktop, though recent versions have moved toward a bundled container runtime that removes even that requirement on macOS.
Who should use Dangerzone?
Dangerzone is built for anyone operating in an elevated-risk environment: investigative journalists receiving leaked files, legal teams handling opposition discovery, human-rights workers in regions where targeted surveillance is real, or sysadmins who need a safe way to inspect vendor documents before opening them on a managed device.
That said, I'd argue the threat model is broader than most people admit. Corporate espionage via weaponised Office attachments is not exotic. If your work involves opening documents from people you've never met — freelancers, clients, conference organisers — Dangerzone belongs in your workflow. It's not a replacement for Malwarebytes or a firewall; it's a narrow, extremely good tool for one specific attack surface.
Novice users may find the initial setup slightly daunting — you're installing a tool that involves container runtimes — but the day-to-day interface is a simple drag-and-drop window. Once it's running, the complexity is invisible.
What are the best Dangerzone alternatives?
There is genuinely no direct Mac equivalent that matches Dangerzone's approach. The closest conceptual neighbours are cloud-based document scanners like Google Drive's built-in virus scan or Virtru's secure viewer, but both require uploading your file to a third-party server — a non-starter for sensitive documents.
For lighter threat models, opening an untrusted PDF in a sandboxed browser tab (Chrome's built-in PDF viewer is reasonably isolated) or using macOS's Quick Look preview offers some protection, but neither rebuilds the file from scratch the way Dangerzone does. If you're comparing security tools broadly, ClamAV scanning or a VirusTotal upload are complementary steps, not substitutes — they try to identify known malware rather than removing the attack surface entirely.
Dangerzone is effectively in a category of one on the Mac.
How does Dangerzone compare to just opening files in Preview?
Preview is a capable, sandboxed viewer — Apple has hardened it significantly over the years — but it still parses the full internal structure of a PDF, including features like JavaScript actions, embedded fonts, and form fields that have historically been exploit vectors. Dangerzone never parses that structure at all; it only ever reads rendered pixel data. For everyday files from trusted sources, Preview is fine. For files from strangers, Dangerzone is the safer choice.