Alternatives and similar repositories for msoffice:

Users that are interested in msoffice are comparing it to the libraries listed below

• JPCERTCC / MalConfScan-with-Cuckoo
  Cuckoo Sandbox plugin for extracts configuration data of known malware
  ☆135Updated last year
• strozfriedberg / ntfs-linker
  An NTFS journal parser
  ☆82Updated 8 years ago
• williballenthin / process-forest
  Reconstruct process trees from event logs
  ☆146Updated 4 years ago
• CyberDefenseInstitute / CDIR
  CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library
  ☆155Updated 3 months ago
• PoorBillionaire / USN-Journal-Parser
  Python script to parse the NTFS USN Journal
  ☆108Updated 2 years ago
• libyal / libvshadow
  Library and tools to access the Volume Shadow Snapshot (VSS) format
  ☆111Updated 5 months ago
• msuhanov / yarp
  Yet another registry parser
  ☆130Updated 2 years ago
• nmantani / FileInsight-plugins
  FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis
  ☆159Updated last month
• JPCERTCC / aa-tools
  Artifact analysis tools by JPCERT/CC Analysis Center
  ☆457Updated 6 months ago
• libyal / libevtx
  Library and tools to access the Windows XML Event Log (EVTX) format
  ☆194Updated 4 months ago
• mandiant / Volatility-Plugins
  ☆82Updated 8 years ago
• MagnetForensics / Hibr2Bin
  Comae Hibernation File Decompressor
  ☆142Updated last year
• williballenthin / INDXParse
  Tool suite for inspecting NTFS artifacts.
  ☆217Updated last year
• JohnLaTwC / PyPowerShellXray
  Python script to decode common encoded PowerShell scripts
  ☆215Updated 6 years ago
• grierforensics / officedissector
  Static analysis tools for Microsoft Office Open XML files and documents
  ☆68Updated 7 years ago
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆193Updated last year
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆192Updated 4 years ago
• libyal / libyal
  Yet another library library (and tools)
  ☆204Updated last month
• JPCERTCC / impfuzzy
  Fuzzy Hash calculated from import API of PE files
  ☆87Updated 2 years ago
• mandiant / ShimCacheParser
  ☆274Updated last year
• nolze / msoffcrypto-tool
  Python tool and library for decrypting and encrypting MS Office files using passwords or other keys
  ☆563Updated this week
• matonis / page_brute
  Page File analysis tools.
  ☆124Updated 9 years ago
• eset / vba-dynamic-hook
  VBA Dynamic Hook dynamically analyzes VBA macros inside Office documents by hooking function calls
  ☆146Updated 8 years ago
• JPCERTCC / MalConfScan
  Volatility plugin for extracts configuration data of known malware
  ☆482Updated last year
• EricZimmerman / Prefetch
  Windows Prefetch parser. Supports all known versions from Windows XP to Windows 10.
  ☆111Updated 3 weeks ago
• hatching / sflock
  Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
  ☆82Updated last year
• MalwareCantFly / Vba2Graph
  Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.
  ☆275Updated 3 years ago
• PoorBillionaire / Windows-Prefetch-Parser
  Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
  ☆115Updated 8 months ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆65Updated 3 years ago
• mkorman90 / regipy
  Regipy is an os independent python library for parsing offline registry hives
  ☆251Updated last month