Recent posts

TypePostAuthorRepliesLast updated
Pageolefile - a Python module to read/write MS OLE2 files decalage242 weeks 4 days ago
PageMalware Search decalage05 weeks 6 days ago
StoryVBA Macro analysis: Beware of the Shift Key! decalage06 weeks 6 days ago
book pageWeaponized MS Office 97-2003 legacy/binary formats (doc, xls, ppt, ...) decalage06 weeks 6 days ago
PageTools to extract VBA Macro source code from MS Office Documents decalage06 weeks 6 days ago
book pageolevba - a tool to extract VBA Macro source code from MS Office documents (OLE and OpenXML) decalage06 weeks 6 days ago
StoryUnmasking Malfunctioning Malicious Documents decalage06 weeks 6 days ago
StoryTip: how to find malware samples containing specific strings decalage06 weeks 6 days ago
StoryHow to grill Malicious Macros - SSTIC15 decalage06 weeks 6 days ago
Story8KB of malware crammed into a single command line in a macro decalage06 weeks 6 days ago
StoryHow to detect most malicious macros without an antivirus decalage06 weeks 6 days ago
StoryUsing VBA Emulation to Analyze Obfuscated Macros decalage06 weeks 6 days ago
PageArticles and presentations about Cyber Security decalage07 weeks 5 days ago
book pageoletools - python tools to analyze OLE and MS Office files decalage011 weeks 2 days ago
StoryAnti-Analysis Tricks in Weaponized RTF decalage040 weeks 5 days ago
book pageWeaponized PDF decalage045 weeks 12 hours ago
book pageWeaponized File Formats decalage045 weeks 12 hours ago
PageExeFilter - an open-source tool and framework to filter files and active content decalage21 year 6 days ago
book pageolemeta - a tool to extract all standard properties (metadata) from OLE files such as MS Office decalage02 years 21 weeks ago
book pageoletimes - a tool to extract creation and modification timestamps of all streams and storages in OLE files decalage02 years 21 weeks ago
StoryOleFileIO_PL: Experimental write features decalage02 years 25 weeks ago
StoryFile Scanning Frameworks for Malware Analysis and Incident Response decalage02 years 26 weeks ago
PageHow to force urllib2 not to use a proxy decalage22 years 42 weeks ago
StoryHow to convert Signsrch/Clamsrch signatures to Yara decalage02 years 42 weeks ago
PageSSTIC08 - Dynamic Malware Analysis for Dummies decalage02 years 43 weeks ago