Peter M. Groen / oletools | GitLab

23 May, 2021

4 commits

oleid: removed obsolete checks
7d06d02f

decalage2 authored
2021-05-23 18:06:50 +0200
Browse Code »
oleid: fixed XLM macro detection, added OleID.file_on_disk
3764d73b

decalage2 authored
2021-05-23 17:46:16 +0200
Browse Code »
oleid: added XLM macro detection (not fully working yet)
0062b0f2

decalage2 authored
2021-05-23 17:28:04 +0200
Browse Code »
ftguess: added PE EXE format detection
024e3bea

decalage2 authored
2021-05-23 17:26:45 +0200
Browse Code »

22 May, 2021

8 commits

oleid: added check for external relationships
ee14bf19

decalage2 authored
2021-05-22 23:55:30 +0200
Browse Code »
ftguess: added is_ole and is_openxml
fa476b8f

decalage2 authored
2021-05-22 23:55:10 +0200
Browse Code »
oleid: added indicators from properties
3d3fb43c

decalage2 authored
2021-05-22 22:53:19 +0200
Browse Code »
oleid: small bugfix, close olefile only if opened
e1e70de6

decalage2 authored
2021-05-22 21:58:09 +0200
Browse Code »
olevba: if XLMMacroDeobfuscator is available, use it to extract and deobfuscate XLM macros
3cae86e6

decalage2 authored
2021-05-22 18:16:06 +0200
Browse Code »
ftguess: reorganised Excel classes, added is_excel and is_word shortcuts
e28b2001

decalage2 authored
2021-05-22 18:08:21 +0200
Browse Code »
oleid: display root CLSID and name for unrecognized OLE files
7e52ad1a

decalage2 authored
2021-05-22 17:46:57 +0200
Browse Code »
crypto: added PowerPoint transparent password '/01Hannes Ruescher/01', fixes #627
3270887e

decalage2 authored
2021-05-22 17:09:04 +0200
Browse Code »

19 May, 2021

3 commits

oleid: added risk levels, use tablestream with colors, use olevba+mraptor to check VBA macros (#679)
461d78ed

decalage2 authored
2021-05-19 00:41:17 +0200
Browse Code »
record_base: removed unused oleid import, which caused an import loop
66020d44

decalage2 authored
2021-05-19 00:39:09 +0200
Browse Code »
tablestream: added TableStyleSlimSep, fixed a few issues causing extra separators
0510626a

decalage2 authored
2021-05-19 00:38:09 +0200
Browse Code »

17 May, 2021

1 commit

common.log_helper: added default values for enable_logging parameters, fixed license
7a46e12d

decalage2 authored
2021-05-17 23:43:39 +0200
Browse Code »

14 May, 2021

2 commits

ftguess: added xlsm
e05aded2

decalage2 authored
2021-05-14 23:34:47 +0200
Browse Code »
added ftguess
bcdd6708

decalage2 authored
2021-05-14 23:18:24 +0200
Browse Code »

07 May, 2021

5 commits

bumped version to 0.56.2
1b339346

decalage2 authored
2021-05-07 23:21:36 +0200
Browse Code »
oleid: fixed bug in check_excel (issue #584, PR #585)
a1f5b281

decalage2 authored
2021-05-07 23:15:52 +0200
Browse Code »
Merge pull request #585 from ninoseki/fix-issue-in-check-excel ...
f5ddf80e
```
Fix an issue in OleID check_excel()
```
Philippe Lagadec authored
2021-05-07 23:12:28 +0200
Browse Code »
bumped version to 0.56.2.dev3 after merging PR #648
24be7f46

decalage2 authored
2021-05-07 22:59:32 +0200
Browse Code »
Merge pull request #648 from ddash-ct/507-rtfpackage ...
69810db4
```
Strip trailing nulls for package check
```
Philippe Lagadec authored
2021-05-07 22:51:48 +0200
Browse Code »

06 May, 2021

2 commits

Merge pull request #678 from conitrade/hotfix/clsid-case ...
2f764df7
```
ensure uppercase KNOWN_CLSIDS matching
```
Philippe Lagadec authored
2021-05-06 23:20:45 +0200
Browse Code »
ensure uppercase KNOWN_CLSIDS matching
2e20e6fa

Alexander Sennhauser authored
2021-05-06 10:27:37 +0000
Browse Code »

04 May, 2021

1 commit

updated plugin_biff to v0.0.22, fixes #647, fixes #674
04b118c2

decalage2 authored
2021-05-04 21:13:05 +0200
Browse Code »

14 Apr, 2021

1 commit

olevba, mraptor: added detection of Workbook_BeforeClose, fixes #518
622d9a2b

decalage2 authored
2021-04-14 21:03:32 +0200
Browse Code »

13 Apr, 2021

1 commit

clsid: added two CLSIDs related to CVE-2021-27058
c638dcc7

decalage2 authored
2021-04-13 22:46:20 +0200
Browse Code »

11 Apr, 2021

1 commit

clsid: added Virtual Disk Service Loader - vdsldr.exe (related to MS Office clic… ...
1522a114
```
…k-to-run issue CVE-2021-27058)
```
decalage2 authored
2021-04-11 00:41:29 +0200
Browse Code »

04 Apr, 2021

1 commit

readme: added link to Splunk add-on for MS O365 Email
f4c960c1

decalage2 authored
2021-04-04 15:13:27 +0200
Browse Code »

02 Apr, 2021

2 commits

updated README, removed unnecessary README.rst
9444569b

decalage2 authored
2021-04-02 23:45:58 +0200
Browse Code »
bumped version to 0.56.1
d4835565

decalage2 authored
2021-04-02 23:29:41 +0200
Browse Code »

29 Mar, 2021

3 commits

oleobj: bumped version to 0.56.1
e8585b78

decalage2 authored
2021-03-29 22:45:47 +0200
Browse Code »
Merge pull request #670 from ljuturu/fix/#641---oleobj ...
25c8b1ab
```
oleobj: Missing commas in BLACKLISTED_RELATIONSHIP_TYPES
```
Philippe Lagadec authored
2021-03-29 22:26:08 +0200
Browse Code »
oleobj: Missing commas in BLACKLISTED_RELATIONSHIP_TYPES
bfb43f38

sindhuri.juturu authored
2021-03-29 13:28:03 -0600
Browse Code »

06 Mar, 2021

1 commit

setup.py: avoid installing msoffcrypto-tool if platform is PyPy except PyPy3 on Linux (fixes #473)
6f8d1cdc

decalage2 authored
2021-03-06 23:28:56 +0100
Browse Code »

03 Mar, 2021

2 commits

travis.yml: removed msoffcrypto-tool to avoid issues with PyPy
fc660e7e

decalage2 authored
2021-03-03 23:45:26 +0100
Browse Code »
setup.py: avoid installing msoffcrypto-tool if platform is PyPy+Windows (fixes #473)
f1d12815

decalage2 authored
2021-03-03 23:16:48 +0100
Browse Code »

02 Dec, 2020

1 commit

Update package comparison to strip trailing nulls in oleobj.OleObject class names
96818359

Dan Dash authored
2020-12-02 08:49:39 -0500
Browse Code »

15 Nov, 2020

1 commit

clsid: added CLSID for DOCM files
96cd17cc

decalage2 authored
2020-11-15 21:57:34 +0100
Browse Code »