Recent posts

TypePostAuthorRepliesLast updated
PageTools to extract VBA Macro source code from MS Office Documents decalage02 weeks 2 days ago
Pageolefile - a Python module to read/write MS OLE2 files decalage247 weeks 1 day ago
PageMalware Search decalage010 weeks 3 days ago
StoryVBA Macro analysis: Beware of the Shift Key! decalage011 weeks 3 days ago
book pageWeaponized MS Office 97-2003 legacy/binary formats (doc, xls, ppt, ...) decalage011 weeks 3 days ago
book pageolevba - a tool to extract VBA Macro source code from MS Office documents (OLE and OpenXML) decalage011 weeks 3 days ago
StoryUnmasking Malfunctioning Malicious Documents decalage011 weeks 3 days ago
StoryTip: how to find malware samples containing specific strings decalage011 weeks 3 days ago
StoryHow to grill Malicious Macros - SSTIC15 decalage011 weeks 3 days ago
Story8KB of malware crammed into a single command line in a macro decalage011 weeks 3 days ago
StoryHow to detect most malicious macros without an antivirus decalage011 weeks 3 days ago
StoryUsing VBA Emulation to Analyze Obfuscated Macros decalage011 weeks 3 days ago
PageArticles and presentations about Cyber Security decalage012 weeks 2 days ago
book pageoletools - python tools to analyze OLE and MS Office files decalage015 weeks 6 days ago
StoryAnti-Analysis Tricks in Weaponized RTF decalage045 weeks 2 days ago
book pageWeaponized PDF decalage049 weeks 4 days ago
book pageWeaponized File Formats decalage049 weeks 4 days ago
PageExeFilter - an open-source tool and framework to filter files and active content decalage21 year 5 weeks ago
book pageolemeta - a tool to extract all standard properties (metadata) from OLE files such as MS Office decalage02 years 25 weeks ago
book pageoletimes - a tool to extract creation and modification timestamps of all streams and storages in OLE files decalage02 years 25 weeks ago
StoryOleFileIO_PL: Experimental write features decalage02 years 29 weeks ago
StoryFile Scanning Frameworks for Malware Analysis and Incident Response decalage02 years 31 weeks ago
PageHow to force urllib2 not to use a proxy decalage22 years 47 weeks ago
StoryHow to convert Signsrch/Clamsrch signatures to Yara decalage02 years 47 weeks ago
PageSSTIC08 - Dynamic Malware Analysis for Dummies decalage02 years 48 weeks ago