herumi / msoffice
☆249Updated last year
Alternatives and similar repositories for msoffice:
Users that are interested in msoffice are comparing it to the libraries listed below
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆161Updated 4 months ago
- Reconstruct process trees from event logs☆147Updated 4 years ago
- Python script to parse the NTFS USN Journal☆110Updated 2 years ago
- Static analysis tools for Microsoft Office Open XML files and documents☆68Updated 7 years ago
- Yet another library library (and tools)☆207Updated 4 months ago
- Artifact analysis tools by JPCERT/CC Analysis Center☆459Updated 9 months ago
- CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library☆158Updated 6 months ago
- VBA Dynamic Hook dynamically analyzes VBA macros inside Office documents by hooking function calls☆149Updated 9 years ago
- An NTFS journal parser☆82Updated 9 years ago
- Application for STIX v2.0 objects management and analysis☆27Updated 7 years ago
- Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.☆278Updated 3 years ago
- Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format.☆348Updated 8 months ago
- Tool suite for inspecting NTFS artifacts.☆221Updated last year
- Library and tools to access the OLE 2 Compound File (OLECF) format☆69Updated 8 months ago
- Yet another registry parser☆132Updated 3 years ago
- An AFF4 C++ implementation.☆200Updated 2 years ago
- ETW Python Library☆281Updated last year
- ☆276Updated 2 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆221Updated 4 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆281Updated 7 years ago
- Commandline low level file extractor for NTFS☆285Updated 5 years ago
- Comae Hibernation File Decompressor☆148Updated 2 years ago
- ☆82Updated 8 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆264Updated 3 years ago
- Cuckoo Sandbox plugin for extracts configuration data of known malware☆135Updated last year
- Fuzzy Hash calculated from import API of PE files☆88Updated 2 years ago
- Page File analysis tools.☆127Updated 9 years ago
- Library and tools to access the Volume Shadow Snapshot (VSS) format☆111Updated 8 months ago
- Python bindings for https://github.com/omerbenamram/evtx/☆50Updated 2 months ago
- Log newly created WMI consumers and processes to the Windows Application event log☆124Updated 7 years ago