herumi / msofficeLinks
☆253Updated last year
Alternatives and similar repositories for msoffice
Users that are interested in msoffice are comparing it to the libraries listed below
Sorting:
- Application for STIX v2.0 objects management and analysis☆27Updated 7 years ago
- Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.☆277Updated 3 years ago
- Yet another library library (and tools)☆212Updated 8 months ago
- Static analysis tools for Microsoft Office Open XML files and documents☆70Updated 7 years ago
- VBA Dynamic Hook dynamically analyzes VBA macros inside Office documents by hooking function calls☆149Updated 9 years ago
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆162Updated 8 months ago
- Python script to parse the NTFS USN Journal☆115Updated 3 years ago
- Checks with NSRL RDS servers looking for for hash matches☆114Updated 4 years ago
- A boot record parser that identifies known good signatures for MBR, VBR and IPL.☆98Updated 6 months ago
- CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library☆161Updated 10 months ago
- Extract embedded files and macros from office documents.☆185Updated last year
- Cuckoo Sandbox plugin for extracts configuration data of known malware☆135Updated last year
- An NTFS journal parser☆82Updated 9 years ago
- Comae Hibernation File Decompressor☆154Updated 2 years ago
- Library and tools to access the Volume Shadow Snapshot (VSS) format☆113Updated last year
- Artifact analysis tools by JPCERT/CC Analysis Center☆462Updated 2 weeks ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆108Updated 4 years ago
- ETW Python Library☆288Updated 2 years ago
- Reconstruct process trees from event logs☆147Updated 5 years ago
- Windows Prefetch parser. Supports all known versions from Windows XP to Windows 10.☆114Updated 7 months ago
- Various Yara signatures (possibly to be included in a release later).☆87Updated 6 years ago
- Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.☆83Updated last year
- ☆82Updated 9 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆155Updated 5 years ago
- PE Import Hash Generator☆81Updated 8 years ago
- Utility to retrieve the Master File Table (MFT) from a live running NTFS volume and send it to a netcat listener.☆41Updated 10 years ago
- Yet another registry parser☆134Updated 3 years ago
- NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl☆37Updated 9 years ago
- Page File analysis tools.☆128Updated 9 years ago
- Fuzzy Hash calculated from import API of PE files☆90Updated 3 years ago