Commit b3cdab8bc40d28067b93bd32bbf40e7d1413ca11
1 parent
cb41b344
getting ready for release 0.60.1
Showing
9 changed files
with
32 additions
and
12 deletions
LICENSE.md
| 1 | 1 | This license applies to the python-oletools package, apart from the thirdparty folder which contains third-party files |
| 2 | 2 | published with their own license. |
| 3 | 3 | |
| 4 | -The python-oletools package is copyright (c) 2012-2021 Philippe Lagadec (http://www.decalage.info) | |
| 4 | +The python-oletools package is copyright (c) 2012-2022 Philippe Lagadec (http://www.decalage.info) | |
| 5 | 5 | |
| 6 | 6 | All rights reserved. |
| 7 | 7 | ... | ... |
README.md
| ... | ... | @@ -26,6 +26,21 @@ Note: python-oletools is not related to OLETools published by BeCubed Software. |
| 26 | 26 | News |
| 27 | 27 | ---- |
| 28 | 28 | |
| 29 | +- **2022-05-09 v0.60.1**: | |
| 30 | + - olevba: | |
| 31 | + - fixed a bug when calling XLMMacroDeobfuscator (PR #737) | |
| 32 | + - removed keyword "sample" causing false positives | |
| 33 | + - oleid: fixed OleID init issue (issue #695, PR #696) | |
| 34 | + - oleobj: | |
| 35 | + - added simple detection of CVE-2021-40444 initial stage | |
| 36 | + - added detection for customUI onLoad | |
| 37 | + - improved handling of incorrect filenames in OLE package (PR #451) | |
| 38 | + - rtfobj: fixed code to find URLs in OLE2Link objects for Py3 (issue #692) | |
| 39 | + - ftguess: | |
| 40 | + - added PowerPoint and XPS formats (PR #716) | |
| 41 | + - fixed issue with XPS and malformed documents (issue #711) | |
| 42 | + - added XLSB format (issue #758) | |
| 43 | + - improved logging with common module log_helper (PR #449) | |
| 29 | 44 | - **2021-06-02 v0.60**: |
| 30 | 45 | - ftguess: new tool to identify file formats and containers (issue #680) |
| 31 | 46 | - oleid: (issue #679) |
| ... | ... | @@ -184,12 +199,16 @@ Download and Install: |
| 184 | 199 | The recommended way to download and install/update the **latest stable release** |
| 185 | 200 | of oletools is to use [pip](https://pip.pypa.io/en/stable/installing/): |
| 186 | 201 | |
| 187 | -- On Linux/Mac: `sudo -H pip install -U oletools` | |
| 188 | -- On Windows: `pip install -U oletools` | |
| 202 | +- On Linux/Mac: `sudo -H pip install -U oletools[full]` | |
| 203 | +- On Windows: `pip install -U oletools[full]` | |
| 189 | 204 | |
| 190 | 205 | This should automatically create command-line scripts to run each tool from |
| 191 | 206 | any directory: `olevba`, `mraptor`, `rtfobj`, etc. |
| 192 | 207 | |
| 208 | +The keyword `[full]` means that all optional dependencies will be installed, such as XLMMacroDeobfuscator. | |
| 209 | +If you prefer a lighter version without optional dependencies, just remove `[full]` from the command line. | |
| 210 | + | |
| 211 | + | |
| 193 | 212 | To get the **latest development version** instead: |
| 194 | 213 | |
| 195 | 214 | - On Linux/Mac: `sudo -H pip install -U https://github.com/decalage2/oletools/archive/master.zip` | ... | ... |
oletools/LICENSE.txt
| ... | ... | @@ -3,7 +3,7 @@ LICENSE for the python-oletools package: |
| 3 | 3 | This license applies to the python-oletools package, apart from the thirdparty |
| 4 | 4 | folder which contains third-party files published with their own license. |
| 5 | 5 | |
| 6 | -The python-oletools package is copyright (c) 2012-2019 Philippe Lagadec (http://www.decalage.info) | |
| 6 | +The python-oletools package is copyright (c) 2012-2022 Philippe Lagadec (http://www.decalage.info) | |
| 7 | 7 | |
| 8 | 8 | All rights reserved. |
| 9 | 9 | ... | ... |
oletools/ftguess.py
| ... | ... | @@ -43,7 +43,7 @@ from __future__ import print_function |
| 43 | 43 | # 2018-07-04 v0.54 PL: - first version |
| 44 | 44 | # 2021-05-09 v0.60 PL: - |
| 45 | 45 | |
| 46 | -__version__ = '0.60.1.dev8' | |
| 46 | +__version__ = '0.60.1' | |
| 47 | 47 | |
| 48 | 48 | # ------------------------------------------------------------------------------ |
| 49 | 49 | # TODO: | ... | ... |
oletools/oleid.py
| ... | ... | @@ -17,7 +17,7 @@ http://www.decalage.info/python/oletools |
| 17 | 17 | |
| 18 | 18 | #=== LICENSE ================================================================= |
| 19 | 19 | |
| 20 | -# oleid is copyright (c) 2012-2021, Philippe Lagadec (http://www.decalage.info) | |
| 20 | +# oleid is copyright (c) 2012-2022, Philippe Lagadec (http://www.decalage.info) | |
| 21 | 21 | # All rights reserved. |
| 22 | 22 | # |
| 23 | 23 | # Redistribution and use in source and binary forms, with or without |
| ... | ... | @@ -60,7 +60,7 @@ from __future__ import print_function |
| 60 | 60 | # improve encryption detection for ppt |
| 61 | 61 | # 2021-05-07 v0.56.2 MN: - fixed bug in check_excel (issue #584, PR #585) |
| 62 | 62 | |
| 63 | -__version__ = '0.60.1.dev2' | |
| 63 | +__version__ = '0.60.1' | |
| 64 | 64 | |
| 65 | 65 | |
| 66 | 66 | #------------------------------------------------------------------------------ | ... | ... |
oletools/oleobj.py
| ... | ... | @@ -90,7 +90,7 @@ from oletools.common.io_encoding import ensure_stdout_handles_unicode |
| 90 | 90 | # 2020-03-03 v0.56 PL: - fixed bug #541, "Ole10Native" is case-insensitive |
| 91 | 91 | # 2022-01-28 v0.60 PL: - added detection of customUI tags |
| 92 | 92 | |
| 93 | -__version__ = '0.60.1.dev5' | |
| 93 | +__version__ = '0.60.1' | |
| 94 | 94 | |
| 95 | 95 | # ----------------------------------------------------------------------------- |
| 96 | 96 | # TODO: | ... | ... |
oletools/olevba.py
| ... | ... | @@ -235,7 +235,7 @@ from __future__ import print_function |
| 235 | 235 | # for issue #619) |
| 236 | 236 | # 2021-04-14 PL: - added detection of Workbook_BeforeClose (issue #518) |
| 237 | 237 | |
| 238 | -__version__ = '0.60.1.dev6' | |
| 238 | +__version__ = '0.60.1' | |
| 239 | 239 | |
| 240 | 240 | #------------------------------------------------------------------------------ |
| 241 | 241 | # TODO: | ... | ... |
oletools/rtfobj.py
| ... | ... | @@ -15,7 +15,7 @@ http://www.decalage.info/python/oletools |
| 15 | 15 | |
| 16 | 16 | #=== LICENSE ================================================================= |
| 17 | 17 | |
| 18 | -# rtfobj is copyright (c) 2012-2021, Philippe Lagadec (http://www.decalage.info) | |
| 18 | +# rtfobj is copyright (c) 2012-2022, Philippe Lagadec (http://www.decalage.info) | |
| 19 | 19 | # All rights reserved. |
| 20 | 20 | # |
| 21 | 21 | # Redistribution and use in source and binary forms, with or without modification, |
| ... | ... | @@ -98,7 +98,7 @@ http://www.decalage.info/python/oletools |
| 98 | 98 | |
| 99 | 99 | from __future__ import print_function |
| 100 | 100 | |
| 101 | -__version__ = '0.60.1.dev1' | |
| 101 | +__version__ = '0.60.1' | |
| 102 | 102 | |
| 103 | 103 | # ------------------------------------------------------------------------------ |
| 104 | 104 | # TODO: | ... | ... |
setup.py
| ... | ... | @@ -55,7 +55,7 @@ import os, fnmatch |
| 55 | 55 | #--- METADATA ----------------------------------------------------------------- |
| 56 | 56 | |
| 57 | 57 | name = "oletools" |
| 58 | -version = '0.60.1.dev8' | |
| 58 | +version = '0.60.1' | |
| 59 | 59 | desc = "Python tools to analyze security characteristics of MS Office and OLE files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), for Malware Analysis and Incident Response #DFIR" |
| 60 | 60 | long_desc = open('oletools/README.rst').read() |
| 61 | 61 | author = "Philippe Lagadec" |
| ... | ... | @@ -83,6 +83,7 @@ classifiers=[ |
| 83 | 83 | "Programming Language :: Python :: 3.6", |
| 84 | 84 | "Programming Language :: Python :: 3.7", |
| 85 | 85 | "Programming Language :: Python :: 3.8", |
| 86 | + "Programming Language :: Python :: 3.9", | |
| 86 | 87 | "Topic :: Security", |
| 87 | 88 | "Topic :: Software Development :: Libraries :: Python Modules", |
| 88 | 89 | ] | ... | ... |