Commit 4b28ee1b6d002cadd463ab03c45d58e4794f4af5
1 parent
0d4a9fb2
updated readme for 0.47
Showing
2 changed files
with
16 additions
and
6 deletions
oletools/README.html
| @@ -14,10 +14,11 @@ | @@ -14,10 +14,11 @@ | ||
| 14 | <p>Note: python-oletools is not related to OLETools published by BeCubed Software.</p> | 14 | <p>Note: python-oletools is not related to OLETools published by BeCubed Software.</p> |
| 15 | <h2 id="news">News</h2> | 15 | <h2 id="news">News</h2> |
| 16 | <ul> | 16 | <ul> |
| 17 | -<li><strong>2016-04-19 v0.46</strong>: <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a> does not deobfuscate VBA expressions by default (much faster), new option --deobf to enable it. Fixed color display bug on Windows for several tools.</li> | 17 | +<li><strong>2016-06-10 v0.47</strong>: <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a> added PPT97 macros support, improved handling of malformed/incomplete documents, improved error handling and JSON output, now returns an exit code based on analysis results, new --relaxed option. <a href="https://github.com/decalage2/oletools/wiki/rtfobj">rtfobj</a>: improved parsing to handle obfuscated RTF documents, added -d option to set output dir. Moved repository and documentation to GitHub.</li> |
| 18 | +<li>2016-04-19 v0.46: <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a> does not deobfuscate VBA expressions by default (much faster), new option --deobf to enable it. Fixed color display bug on Windows for several tools.</li> | ||
| 18 | <li>2016-04-12 v0.45: improved <a href="https://github.com/decalage2/oletools/wiki/rtfobj">rtfobj</a> to handle several <a href="http://www.decalage.info/rtf_tricks">anti-analysis tricks</a>, improved <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a> to export results in JSON format.</li> | 19 | <li>2016-04-12 v0.45: improved <a href="https://github.com/decalage2/oletools/wiki/rtfobj">rtfobj</a> to handle several <a href="http://www.decalage.info/rtf_tricks">anti-analysis tricks</a>, improved <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a> to export results in JSON format.</li> |
| 19 | <li>2016-03-11 v0.44: improved <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a> to extract and analyse strings from VBA Forms.</li> | 20 | <li>2016-03-11 v0.44: improved <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a> to extract and analyse strings from VBA Forms.</li> |
| 20 | -<li>2016-03-04 v0.43: added new tool MacroRaptor (mraptor) to detect malicious macros, bugfix and slight improvements in <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>.</li> | 21 | +<li>2016-03-04 v0.43: added new tool <a href="https://github.com/decalage2/oletools/wiki/mraptor">MacroRaptor</a> (mraptor) to detect malicious macros, bugfix and slight improvements in <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>.</li> |
| 21 | <li>2016-02-07 v0.42: added two new tools oledir and olemap, better handling of malformed files and several bugfixes in <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>, improved display for <a href="https://github.com/decalage2/oletools/wiki/olemeta">olemeta</a>.</li> | 22 | <li>2016-02-07 v0.42: added two new tools oledir and olemap, better handling of malformed files and several bugfixes in <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>, improved display for <a href="https://github.com/decalage2/oletools/wiki/olemeta">olemeta</a>.</li> |
| 22 | <li>2015-09-22 v0.41: added new --reveal option to <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>, to show the macro code with VBA strings deobfuscated.</li> | 23 | <li>2015-09-22 v0.41: added new --reveal option to <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>, to show the macro code with VBA strings deobfuscated.</li> |
| 23 | <li>2015-09-17 v0.40: Improved macro deobfuscation in <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>, to decode Hex and Base64 within VBA expressions. Display printable deobfuscated strings by default. Improved the VBA_Parser API. Improved performance. Fixed <a href="https://github.com/decalage2/oletools/issues/23">issue #23</a> with sys.stderr.</li> | 24 | <li>2015-09-17 v0.40: Improved macro deobfuscation in <a href="https://github.com/decalage2/oletools/wiki/olevba">olevba</a>, to decode Hex and Base64 within VBA expressions. Display printable deobfuscated strings by default. Improved the VBA_Parser API. Improved performance. Fixed <a href="https://github.com/decalage2/oletools/issues/23">issue #23</a> with sys.stderr.</li> |
oletools/README.rst
| @@ -26,7 +26,15 @@ Software. | @@ -26,7 +26,15 @@ Software. | ||
| 26 | News | 26 | News |
| 27 | ---- | 27 | ---- |
| 28 | 28 | ||
| 29 | -- **2016-04-19 v0.46**: | 29 | +- **2016-06-10 v0.47**: |
| 30 | + `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__ added | ||
| 31 | + PPT97 macros support, improved handling of malformed/incomplete | ||
| 32 | + documents, improved error handling and JSON output, now returns an | ||
| 33 | + exit code based on analysis results, new --relaxed option. | ||
| 34 | + `rtfobj <https://github.com/decalage2/oletools/wiki/rtfobj>`__: | ||
| 35 | + improved parsing to handle obfuscated RTF documents, added -d option | ||
| 36 | + to set output dir. Moved repository and documentation to GitHub. | ||
| 37 | +- 2016-04-19 v0.46: | ||
| 30 | `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__ does | 38 | `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__ does |
| 31 | not deobfuscate VBA expressions by default (much faster), new option | 39 | not deobfuscate VBA expressions by default (much faster), new option |
| 32 | --deobf to enable it. Fixed color display bug on Windows for several | 40 | --deobf to enable it. Fixed color display bug on Windows for several |
| @@ -40,9 +48,10 @@ News | @@ -40,9 +48,10 @@ News | ||
| 40 | - 2016-03-11 v0.44: improved | 48 | - 2016-03-11 v0.44: improved |
| 41 | `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__ to | 49 | `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__ to |
| 42 | extract and analyse strings from VBA Forms. | 50 | extract and analyse strings from VBA Forms. |
| 43 | -- 2016-03-04 v0.43: added new tool MacroRaptor (mraptor) to detect | ||
| 44 | - malicious macros, bugfix and slight improvements in | ||
| 45 | - `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__. | 51 | +- 2016-03-04 v0.43: added new tool |
| 52 | + `MacroRaptor <https://github.com/decalage2/oletools/wiki/mraptor>`__ | ||
| 53 | + (mraptor) to detect malicious macros, bugfix and slight improvements | ||
| 54 | + in `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__. | ||
| 46 | - 2016-02-07 v0.42: added two new tools oledir and olemap, better | 55 | - 2016-02-07 v0.42: added two new tools oledir and olemap, better |
| 47 | handling of malformed files and several bugfixes in | 56 | handling of malformed files and several bugfixes in |
| 48 | `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__, | 57 | `olevba <https://github.com/decalage2/oletools/wiki/olevba>`__, |