Alternatives and similar repositories for olefile:

Users that are interested in olefile are comparing it to the libraries listed below

• bontchev / pcodedmp
  A VBA p-code disassembler
  ☆461Updated 3 years ago
• unixfreak0037 / officeparser
  Extract embedded files and macros from office documents.
  ☆178Updated last year
• libyal / libolecf
  Library and tools to access the OLE 2 Compound File (OLECF) format
  ☆69Updated 6 months ago
• fireeye / pywintrace
  ETW Python Library
  ☆276Updated last year
• PoorBillionaire / USN-Journal-Parser
  Python script to parse the NTFS USN Journal
  ☆108Updated 2 years ago
• msuhanov / regf
  Windows registry file format specification
  ☆337Updated 6 years ago
• grierforensics / officedissector
  Static analysis tools for Microsoft Office Open XML files and documents
  ☆68Updated 7 years ago
• Big5-sec / pcode2code
  a vba pcode decompiler based on pcodedmp
  ☆108Updated 3 years ago
• libyal / libyal
  Yet another library library (and tools)
  ☆205Updated last month
• williballenthin / INDXParse
  Tool suite for inspecting NTFS artifacts.
  ☆218Updated last year
• GOVCERT-LU / eml_parser
  python eml parser module
  ☆221Updated 3 months ago
• williballenthin / python-registry
  Pure Python parser for Windows Registry hives.
  ☆427Updated 3 weeks ago
• py4n6 / pytsk
  Python bindings for The Sleuth Kit (libtsk)
  ☆94Updated 2 months ago
• CERT-Polska / ursadb
  Trigram database written in C++, suited for malware indexing
  ☆125Updated 4 months ago
• williballenthin / python-sdb
  Pure Python parser for Application Compatibility Shim Databases (.sdb files)
  ☆108Updated 4 years ago
• MalwareCantFly / Vba2Graph
  Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.
  ☆276Updated 3 years ago
• hatching / sflock
  Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
  ☆82Updated last year
• eset / vba-dynamic-hook
  VBA Dynamic Hook dynamically analyzes VBA macros inside Office documents by hooking function calls
  ☆146Updated 8 years ago
• kirk-sayre-work / VBASeismograph
  A tool for detecting VBA stomping.
  ☆98Updated 2 years ago
• jschicht / LogFileParser
  Parser for $LogFile on NTFS
  ☆191Updated last year
• libyal / winreg-kb
  Windows Registry Knowledge Base
  ☆171Updated 4 months ago
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆192Updated 4 years ago
• nscaife / file-windows
  File and libmagic for Windows
  ☆109Updated 4 years ago
• omerbenamram / pyevtx-rs
  Python bindings for https://github.com/omerbenamram/evtx/
  ☆50Updated 2 months ago
• jschicht / UsnJrnl2Csv
  Parser for $UsnJrnl on NTFS
  ☆109Updated 2 years ago
• mkorman90 / regipy
  Regipy is an os independent python library for parsing offline registry hives
  ☆252Updated 2 months ago
• delimitry / compressed_rtf
  Compressed Rich Text Format (RTF) compression and decompression in Python
  ☆23Updated 10 months ago
• bannsec / winevt
  Windows Event Interactions in Python
  ☆67Updated 3 months ago
• Neo23x0 / DLLRunner
  Smart DLL execution for malware analysis in sandbox systems
  ☆143Updated 10 years ago
• libyal / liblnk
  Library and tools to access the Windows Shortcut File (LNK) format
  ☆203Updated 4 months ago