Peter M. Groen / oletools | GitLab

19 Jun, 2015

3 commits

updated readme and doc for oletools 0.12
6e4e7d5f

Philippe Lagadec authored
2015-06-19 22:08:31 +0200
Browse Code »
olevba: improved display during long analysis
bd53eff6

Philippe Lagadec authored
2015-06-19 21:48:42 +0200
Browse Code »
olevba: added options -a, -c, --each, --attr
2fa4c06c

Philippe Lagadec authored
2015-06-19 20:31:40 +0200
Browse Code »

16 Jun, 2015

4 commits

olevba: display VBA obfuscation flag in triage mode
ac8bddb7

Philippe Lagadec authored
2015-06-16 22:44:56 +0200
Browse Code »
olevba: added pyparsing into thirdparty folder
ab1ba65e

Philippe Lagadec authored
2015-06-16 21:57:53 +0200
Browse Code »
olevba: added pyparsing into thirdparty folder
b9b82e25

Philippe Lagadec authored
2015-06-16 21:57:17 +0200
Browse Code »
olevba: added generic VBA expression deobfuscation (chr,asc,etc) using pyparsing
f1944c35

Philippe Lagadec authored
2015-06-16 19:20:54 +0200
Browse Code »

29 May, 2015

4 commits

updated setup and doc for oletools 0.11
58773840

Philippe Lagadec authored
2015-05-29 22:48:12 +0200
Browse Code »
olevba: added suspicious keywords - fixed issue #13
46b4b11d

Philippe Lagadec authored
2015-05-29 22:36:35 +0200
Browse Code »
olevba: added suspicious keywords suggested by Davy Douhine - fixed issue #9
cf11d960

Philippe Lagadec authored
2015-05-29 22:33:40 +0200
Browse Code »
olevba: added suspicious keyword suggested by @ozhermit
9f16427f

Philippe Lagadec authored
2015-05-29 22:27:59 +0200
Browse Code »

26 May, 2015

4 commits

olevba: improved MSO files parsing, taking into account ...
75259a45
```
various data offsets (fixed issue #12) - improved detection of MSO files, avoiding incorrect parsing errors (fixed issue #7)
```
Philippe Lagadec authored
2015-05-26 23:25:17 +0200
Browse Code »
olevba: added is_mso_file function
4795c8b9

Philippe Lagadec authored
2015-05-26 21:53:04 +0200
Browse Code »
updated olefile to v0.43 (slight changes in _OleDirectoryEntry)
77842b93

Philippe Lagadec authored
2015-05-26 21:52:36 +0200
Browse Code »
updated doc and setup.py
15a9744c

Philippe Lagadec authored
2015-05-26 21:50:43 +0200
Browse Code »

24 May, 2015

1 commit

improved support for MHTML files with modified header: fixed issue #11
bdad8c14

Philippe Lagadec authored
2015-05-24 22:26:04 +0200
Browse Code »

06 May, 2015

5 commits

updated readme with link to issue #10
fad632c5

Philippe Lagadec authored
2015-05-06 15:13:31 +0200
Browse Code »
updated setup.py for v0.10
eb29007c

Philippe Lagadec authored
2015-05-06 15:03:12 +0200
Browse Code »
updated doc home for v0.10
7336f730

Philippe Lagadec authored
2015-05-06 14:56:52 +0200
Browse Code »
updated readme and doc
f2ead51c

Philippe Lagadec authored
2015-05-06 14:55:45 +0200
Browse Code »
added support for Word MHTML files with macros (Single File Web Page), fixed issue #10
0762f5bb

Philippe Lagadec authored
2015-05-06 14:49:39 +0200
Browse Code »

23 Mar, 2015

3 commits

updated readme and doc
dc628fab

Philippe Lagadec authored
2015-03-23 21:43:36 +0100
Browse Code »
setup.py: added shebang line, chmod +x
d1f62d20

Philippe Lagadec authored
2015-03-23 19:41:57 +0100
Browse Code »
updated setup.py
b4b61695

Philippe Lagadec authored
2015-03-23 16:56:38 +0100
Browse Code »

22 Mar, 2015

1 commit

olevba: added suspicious keywords for sandboxing and virtualisation detection
75e413f5

Philippe Lagadec authored
2015-03-22 17:35:25 +0100
Browse Code »

19 Mar, 2015

3 commits

set all scripts as executable on Linux/Unix
91642895

Philippe Lagadec authored
2015-03-19 09:14:07 +0100
Browse Code »
changed line endings from CRLF to LF in all scripts to improve Linux/Unix compatibility
cda79757

Philippe Lagadec authored
2015-03-19 08:49:56 +0100
Browse Code »
olevba: changed line endings from CRLF to LF
a4ffb743

Philippe Lagadec authored
2015-03-19 08:20:13 +0100
Browse Code »

04 Mar, 2015

3 commits

olevba: added banner with version
41896bcf

Philippe Lagadec authored
2015-03-04 22:31:14 +0100
Browse Code »
olevba: updated description
74cd7ccb

Philippe Lagadec authored
2015-03-04 22:28:47 +0100
Browse Code »
olevba: added support for Word 2003 XML
70b7bfb6

Philippe Lagadec authored
2015-03-04 22:27:31 +0100
Browse Code »

28 Feb, 2015

2 commits

olevba: updated description in code
ec719fa9

Philippe Lagadec authored
2015-02-28 19:01:04 +0100
Browse Code »
olevba: fixed issue #5 in doc, --hex option renamed to --decode
13a71c47

Philippe Lagadec authored
2015-02-28 19:00:09 +0100
Browse Code »

08 Feb, 2015

6 commits

updated setup.py for v0.08
6c64d5d1

Philippe Lagadec authored
2015-02-08 22:46:16 +0100
Browse Code »
updated doc and readme
430c7b98

Philippe Lagadec authored
2015-02-08 22:42:15 +0100
Browse Code »
olevba: improved VBA_Scanner and scan_vba API
cdbcd101

Philippe Lagadec authored
2015-02-08 17:16:15 +0100
Browse Code »
olevba: updated VBA_Parser docstring
7d530ddb

Philippe Lagadec authored
2015-02-08 16:45:56 +0100
Browse Code »
olevba: improved Base64 decoding, fixed triage mode not to scan attrib lines
b984e77a

Philippe Lagadec authored
2015-02-08 16:27:53 +0100
Browse Code »
oleid: added comments
aca4787e

Philippe Lagadec authored
2015-02-08 16:23:51 +0100
Browse Code »

07 Feb, 2015

1 commit

olevba: improved Base64 detection and decoding
67f0725b

Philippe Lagadec authored
2015-02-07 15:16:38 +0100
Browse Code »