herumi / msoffice

Related projects ⓘ

Alternatives and complementary repositories for msoffice

• eset / vba-dynamic-hook
  VBA Dynamic Hook dynamically analyzes VBA macros inside Office documents by hooking function calls
  ☆146Updated 8 years ago
• williballenthin / process-forest
  Reconstruct process trees from event logs
  ☆146Updated 4 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆130Updated 2 years ago
• strozfriedberg / ntfs-linker
  An NTFS journal parser
  ☆82Updated 8 years ago
• williballenthin / INDXParse
  Tool suite for inspecting NTFS artifacts.
  ☆216Updated last year
• grierforensics / officedissector
  Static analysis tools for Microsoft Office Open XML files and documents
  ☆68Updated 7 years ago
• JPCERTCC / MalConfScan-with-Cuckoo
  Cuckoo Sandbox plugin for extracts configuration data of known malware
  ☆135Updated 11 months ago
• nmantani / FileInsight-plugins
  FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis
  ☆156Updated last week
• nolze / msoffcrypto-tool
  Python tool and library for decrypting and encrypting MS Office files using passwords or other keys
  ☆556Updated 3 months ago
• CyberDefenseInstitute / CDIR
  CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library
  ☆154Updated 3 weeks ago
• JohnLaTwC / PyPowerShellXray
  Python script to decode common encoded PowerShell scripts
  ☆215Updated 6 years ago
• williballenthin / python-sdb
  Pure Python parser for Application Compatibility Shim Databases (.sdb files)
  ☆106Updated 3 years ago
• libyal / libyal
  Yet another library library (and tools)
  ☆201Updated last month
• MalwareCantFly / Vba2Graph
  Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.
  ☆275Updated 2 years ago
• PoorBillionaire / USN-Journal-Parser
  Python script to parse the NTFS USN Journal
  ☆107Updated 2 years ago
• libyal / libevtx
  Library and tools to access the Windows XML Event Log (EVTX) format
  ☆190Updated last month
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆188Updated last year
• libyal / libvshadow
  Library and tools to access the Volume Shadow Snapshot (VSS) format
  ☆110Updated 3 months ago
• libyal / libscca
  Library and tools to access the Windows Prefetch File (SCCA) format.
  ☆71Updated this week
• MagnetForensics / Hibr2Bin
  Comae Hibernation File Decompressor
  ☆141Updated last year
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆92Updated 2 weeks ago
• unixfreak0037 / officeparser
  Extract embedded files and macros from office documents.
  ☆178Updated 11 months ago
• mandiant / Volatility-Plugins
  ☆82Updated 8 years ago
• tehsyntx / loffice
  Lazy Office Analyzer
  ☆119Updated 7 years ago
• tylabs / qs_old
  Command line tool for scanning streams within office documents plus xor db attack
  ☆126Updated last year
• mnrkbys / vss_carver
  Carves and recreates VSS catalog and store from Windows disk image.
  ☆96Updated last year
• libyal / libolecf
  Library and tools to access the OLE 2 Compound File (OLECF) format
  ☆69Updated 3 months ago
• JPCERTCC / ToolAnalysisResultSheet_jp
  分析ツール結果シート
  ☆16Updated 7 years ago
• JPCERTCC / STrelok
  Application for STIX v2.0 objects management and analysis
  ☆27Updated 7 years ago
• Neo23x0 / ImpHash-Generator
  PE Import Hash Generator
  ☆74Updated 7 years ago