unixfreak0037 / officeparser
Extract embedded files and macros from office documents.
☆180Updated last year
Alternatives and similar repositories for officeparser:
Users that are interested in officeparser are comparing it to the libraries listed below
- VBA Dynamic Hook dynamically analyzes VBA macros inside Office documents by hooking function calls☆149Updated 9 years ago
- Smart DLL execution for malware analysis in sandbox systems☆143Updated 10 years ago
- Reconstruct process trees from event logs☆147Updated 4 years ago
- Static analysis tools for Microsoft Office Open XML files and documents☆68Updated 7 years ago
- Lazy Office Analyzer☆122Updated 8 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆109Updated 4 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆117Updated 10 months ago
- Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.☆278Updated 3 years ago
- Windows link file (shortcuts) examiner☆68Updated 10 months ago
- PE Import Hash Generator☆78Updated 7 years ago
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆148Updated 7 years ago
- ☆134Updated 6 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆155Updated 5 years ago
- zer0m0n driver for cuckoo sandbox☆87Updated 8 years ago
- A warehouse for your malware☆134Updated 11 years ago
- Command line tool for scanning streams within office documents plus xor db attack☆126Updated last year
- A tool for detecting VBA stomping.☆100Updated 2 years ago
- Your bag of handy codes for malware researchers☆120Updated 5 years ago
- ☆82Updated 5 years ago
- Scripts for dealing with various ek's☆69Updated 8 years ago
- Various Yara signatures (possibly to be included in a release later).☆85Updated 5 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 7 years ago
- A python script used to parse the SAM registry hive.☆72Updated 7 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆75Updated 10 years ago
- Malware Analysis, Threat Intelligence and Reverse Engineering: LABS☆82Updated 4 years ago
- ☆52Updated 10 years ago
- x86-64 Windows shellcode that recreates the Jurassic Park hacking scene (Ah, ah, ah... you didn't' say the magic word!)☆84Updated 4 years ago
- Log newly created WMI consumers and processes to the Windows Application event log☆124Updated 7 years ago
- A one-click tool to inject jobs into the BITS queue (Background Intelligent Transfer Service), allowing arbitrary program execution as th…☆99Updated 5 years ago
- Open Source Office Malware Generation & Polymorphic Engine for Red Teams and QA testing☆95Updated 8 years ago