decalage2 / oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
☆2,980Updated last week
Alternatives and similar repositories for oletools:
Users that are interested in oletools are comparing it to the libraries listed below
- Loki - Simple IOC and YARA Scanner☆3,450Updated 2 months ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,840Updated last week
- YARA signature and IOC database for my scanners and tools☆2,530Updated this week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,394Updated this week
- Volatility 3.0 development☆2,845Updated this week
- Repository of yara rules☆4,265Updated 9 months ago
- Mimikatz implementation in pure Python☆2,941Updated 3 weeks ago
- A curated list of awesome YARA rules, tools, and people.☆3,661Updated 2 months ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆2,145Updated last year
- A VBA parser and emulation engine to analyze malicious macros.☆1,065Updated 6 months ago
- PowerShell Obfuscator☆3,830Updated last year
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,073Updated this week
- macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other f…☆2,205Updated 5 months ago
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆7,242Updated this week
- yarGen is a generator for YARA rules☆1,591Updated 7 months ago
- Please no pull requests for this repository. Thanks!☆2,105Updated last month
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆6,822Updated this week
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,810Updated 7 months ago
- Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensi…☆3,922Updated 2 weeks ago
- Wiki to collect Red Team infrastructure hardening resources☆4,205Updated 9 months ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,505Updated last year
- A list of cyber-chef recipes and curated links☆2,053Updated 7 months ago
- Trying to tame the three-headed dog.☆4,257Updated 4 months ago
- Red Teaming Tactics and Techniques☆4,131Updated 5 months ago
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆2,998Updated 5 months ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,203Updated last month
- A tool to abuse Exchange services☆2,190Updated 7 months ago
- Six Degrees of Domain Admin☆10,012Updated 7 months ago
- A collaborative, multi-platform, red teaming framework☆3,386Updated this week
- Windows Exploit Suggester - Next Generation☆4,302Updated this week