PPA (.ppa)

.ppa file signature | application/vnd.ms-powerpoint

PPA is a Microsoft PowerPoint add-in file format developed by Microsoft for extending the application with custom commands, macros, and automation. It is used with PowerPoint presentations and related Office workflows to provide reusable functionality through add-ins and tools. PPA is a legacy format based on older Microsoft Office container technology; it is generally safe to open, but like other macro-enabled files it should be trusted only from verified sources.

Safe

Magic Bytes

Offset 0


              D0 CF 11 E0 A1 B1 1A E1

Sources: Apache Tika

Extension

.ppa

MIME Type

application/vnd.ms-powerpoint

Byte Offset

Risk Level

Safe

Validation Code

How to validate .ppa files in Python

Python

def is_ppa(file_path: str) -> bool:
    """Check if file is a valid PPA by magic bytes."""
    signature = bytes([0xD0, 0xCF, 0x11, 0xE0, 0xA1, 0xB1, 0x1A, 0xE1])
    with open(file_path, "rb") as f:
        return f.read(8) == signature

How to validate .ppa files in Node.js

Node.js

function isPPA(buffer: Buffer): boolean {
  const signature = Buffer.from([0xD0, 0xCF, 0x11, 0xE0, 0xA1, 0xB1, 0x1A, 0xE1]);
  return buffer.subarray(0, 8).equals(signature);
}

How to validate .ppa files in Go

func IsPPA(data []byte) bool {
    signature := []byte{0xD0, 0xCF, 0x11, 0xE0, 0xA1, 0xB1, 0x1A, 0xE1}
    if len(data) < 8 {
        return false
    }
    return bytes.Equal(data[:8], signature)
}

API Endpoint

GET /api/v1/ppa


              curl https://filesignature.org/api/v1/ppa

See the full API documentation for all endpoints and parameters.

Related Formats

.pot .pps .ppt .ppz

Frequently Asked Questions

What is a .ppa file?

A .ppa file is identified by the magic bytes D0 CF 11 E0 A1 B1 1A E1 at byte offset 0. PPA is a Microsoft PowerPoint add-in file format developed by Microsoft for extending the application with custom commands, macros, and automation. It is used with PowerPoint presentations and related Office workflows to provide reusable functionality through add-ins and tools. PPA is a legacy format based on older Microsoft Office container technology; it is generally safe to open, but like other macro-enabled files it should be trusted only from verified sources.

What are the magic bytes for .ppa files?

The magic bytes for PPA files are D0 CF 11 E0 A1 B1 1A E1 at byte offset 0. These bytes uniquely identify the file format regardless of the file extension.

How do I validate a .ppa file?

To validate a .ppa file, read the first bytes of the file and compare them against the known magic bytes (D0 CF 11 E0 A1 B1 1A E1) at offset 0. This is more reliable than checking the file extension alone, as extensions can be renamed.

What is the MIME type for .ppa files?

The primary MIME type for .ppa files is application/vnd.ms-powerpoint.

Is it safe to open .ppa files?

PPA (.ppa) files are generally safe to open. They are classified as low risk because they primarily contain data rather than executable code. However, always ensure files come from a trusted source.