decalage2 / oletoolsLinks
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
☆3,217Updated 5 months ago
Alternatives and similar repositories for oletools
Users that are interested in oletools are comparing it to the libraries listed below
Sorting:
- Please no pull requests for this repository. Thanks!☆2,347Updated last week
- A VBA parser and emulation engine to analyze malicious macros.☆1,114Updated last year
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆2,027Updated last week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,780Updated this week
- YARA signature and IOC database for my scanners and tools☆2,787Updated last week
- Volatility 3.0 development☆3,662Updated last week
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,009Updated 3 weeks ago
- Loki - Simple IOC and YARA Scanner☆3,675Updated 3 weeks ago
- yarGen is a generator for YARA rules☆1,738Updated last month
- A curated list of awesome YARA rules, tools, and people.☆4,070Updated 7 months ago
- Repository of yara rules☆4,575Updated last year
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆8,116Updated last month
- Mimikatz implementation in pure Python☆3,166Updated last month
- A toolset to make a system look as if it was the victim of an APT attack☆2,678Updated last month
- An advanced memory forensics framework☆7,879Updated 6 months ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,471Updated 2 weeks ago
- A list of cyber-chef recipes and curated links☆2,147Updated last year
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,459Updated last week
- Digging Deeper....☆3,564Updated this week
- Malware Configuration And Payload Extraction☆2,789Updated last week
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆7,990Updated 2 months ago
- Powerful Python tool to analyze PDF documents☆1,401Updated last year
- macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other f…☆2,289Updated last year
- Windows Events Attack Samples☆2,441Updated 2 years ago
- PowerShell Obfuscator☆4,130Updated 2 years ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,266Updated 2 weeks ago
- Chepy is a python lib/cli equivalent of the awesome CyberChef tool.☆1,020Updated last week
- Indicators of Compromises (IOC) of our various investigations☆1,874Updated 3 weeks ago
- APT & CyberCriminal Campaign Collection☆4,003Updated last year
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆2,215Updated last year