Recent posts

TypePostAuthorRepliesLast updated
StoryVBA Macro analysis: Beware of the Shift Key! decalage05 days 16 hours ago
book pageWeaponized MS Office 97-2003 legacy/binary formats (doc, xls, ppt, ...) decalage05 days 17 hours ago
PageTools to extract VBA Macro source code from MS Office Documents decalage05 days 17 hours ago
book pageolevba - a tool to extract VBA Macro source code from MS Office documents (OLE and OpenXML) decalage05 days 17 hours ago
PageMalware Search decalage05 days 17 hours ago
StoryUnmasking Malfunctioning Malicious Documents decalage05 days 17 hours ago
StoryTip: how to find malware samples containing specific strings decalage05 days 17 hours ago
StoryHow to grill Malicious Macros - SSTIC15 decalage05 days 17 hours ago
Story8KB of malware crammed into a single command line in a macro decalage05 days 17 hours ago
StoryHow to detect most malicious macros without an antivirus decalage05 days 17 hours ago
StoryUsing VBA Emulation to Analyze Obfuscated Macros decalage05 days 17 hours ago
PageArticles and presentations about Cyber Security decalage01 week 4 days ago
book pageoletools - python tools to analyze OLE and MS Office files decalage05 weeks 1 day ago
StoryAnti-Analysis Tricks in Weaponized RTF decalage034 weeks 4 days ago
book pageWeaponized PDF decalage038 weeks 6 days ago
book pageWeaponized File Formats decalage038 weeks 6 days ago
PageExeFilter - an open-source tool and framework to filter files and active content decalage246 weeks 6 days ago
Pageolefile - a Python module to read/write MS OLE2 files decalage2446 weeks 6 days ago
book pageolemeta - a tool to extract all standard properties (metadata) from OLE files such as MS Office decalage02 years 14 weeks ago
book pageoletimes - a tool to extract creation and modification timestamps of all streams and storages in OLE files decalage02 years 14 weeks ago
StoryOleFileIO_PL: Experimental write features decalage02 years 18 weeks ago
StoryFile Scanning Frameworks for Malware Analysis and Incident Response decalage02 years 20 weeks ago
PageHow to force urllib2 not to use a proxy decalage22 years 36 weeks ago
StoryHow to convert Signsrch/Clamsrch signatures to Yara decalage02 years 36 weeks ago
PageSSTIC08 - Dynamic Malware Analysis for Dummies decalage02 years 37 weeks ago