decalage2 / olefile

olefile is a Python package to parse, read and write Microsoft OLE2 files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), such as Microsoft Office 97-2003 documents, vbaProject.bin in MS Office 2007+ files, Image Composer and FlashPix files, Outlook messages, StickyNotes, several Microscopy file fo…

☆230

Related projects ⓘ

Alternatives and complementary repositories for olefile

bontchev / pcodedmp
A VBA p-code disassembler
☆458Updated 3 years ago
williballenthin / python-registry
Pure Python parser for Windows Registry hives.
☆426Updated 11 months ago
unixfreak0037 / officeparser
Extract embedded files and macros from office documents.
☆178Updated 11 months ago
fireeye / pywintrace
ETW Python Library
☆268Updated last year
libyal / libscca
Library and tools to access the Windows Prefetch File (SCCA) format.
☆71Updated this week
libyal / winreg-kb
Windows Registry Knowledge Base
☆162Updated last month
libyal / libolecf
Library and tools to access the OLE 2 Compound File (OLECF) format
☆69Updated 3 months ago
vikramarsid / msg_parser
Python module to read, parse and converting Microsoft Outlook MSG E-Mail files.
☆53Updated last week
williballenthin / INDXParse
Tool suite for inspecting NTFS artifacts.
☆216Updated last year
williballenthin / python-sdb
Pure Python parser for Application Compatibility Shim Databases (.sdb files)
☆106Updated 3 years ago
Matmaus / LnkParse3
Windows Shortcut file (LNK) parser
☆71Updated 6 months ago
grierforensics / officedissector
Static analysis tools for Microsoft Office Open XML files and documents
☆68Updated 7 years ago
omerbenamram / pyevtx-rs
Python bindings for https://github.com/omerbenamram/evtx/
☆49Updated 2 weeks ago
mkorman90 / regipy
Regipy is an os independent python library for parsing offline registry hives
☆244Updated 2 months ago
GOVCERT-LU / eml_parser
python eml parser module
☆215Updated 2 weeks ago
williballenthin / python-ntfs
Open source Python library for NTFS analysis
☆80Updated 6 years ago
py4n6 / pytsk
Python bindings for The Sleuth Kit (libtsk)
☆93Updated last month
msuhanov / regf
Windows registry file format specification
☆325Updated 6 years ago
PoorBillionaire / USN-Journal-Parser
Python script to parse the NTFS USN Journal
☆107Updated 2 years ago
skelsec / minidump
Python library to parse and read Microsoft minidump file format
☆272Updated 3 months ago
fox-it / danderspritz-evtx
Parse evtx files and detect use of the DanderSpritz eventlogedit module
☆147Updated 6 years ago
libyal / libvshadow
Library and tools to access the Volume Shadow Snapshot (VSS) format
☆110Updated 3 months ago
jschicht / RawCopy
Commandline low level file extractor for NTFS
☆274Updated 5 years ago
jdu2600 / Windows10EtwEvents
Events from all manifest-based and mof-based ETW providers across Windows 10 versions
☆268Updated 6 months ago
libyal / libyal
Yet another library library (and tools)
☆201Updated last month
hakril / PythonForWindows
A codebase aimed to make interaction with Windows and native execution easier
☆582Updated 2 weeks ago
libyal / libesedb
Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format.
☆341Updated 3 months ago
silascutler / LnkParse
Windows Shortcut file (LNK) parser
☆134Updated 2 years ago
RobinDavid / pyADS
Python module to manipulate NTFS Alternate Data Stream (ADS) in Python
☆56Updated 5 years ago