Contact DMCA Privacy

Robuta

https://blog.didierstevens.com/2020/07/19/update-oledump-py-version-0-0-51/ Update: oledump.py Version 0.0.51 | Didier Stevens update oledump pyversion https://blog.didierstevens.com/2020/05/22/update-oledump-py-version-0-0-50/ Update: oledump.py Version 0.0.50 | Didier Stevens This new version brings updates to plugin plugin_biff.py. This plugin can now produce a CSV list of cell values and formulas (option -c) or a JSON file of... update oledump pyversion https://blog.didierstevens.com/2018/05/06/update-oledump-py-version-0-0-34/ Update: oledump.py Version 0.0.34 | Didier Stevens update oledump pyversion https://blog.didierstevens.com/2016/05/29/update-pecheck-py-version-0-5-1/ Update: pecheck.py Version 0.5.1 | Didier Stevens This version offers more info about the overlay: pecheck-v0_5_1.zip (https) MD5: F045A67AC1ECCF129030DFCE316383A9 SHA256:... update pecheck pyversion https://blog.didierstevens.com/2018/06/12/update-pecheck-py-version-0-7-3/ Update: pecheck.py Version 0.7.3 | Didier Stevens update pecheck pyversion https://blog.didierstevens.com/2017/07/04/update-pecheck-py-version-0-7-0/ Update: pecheck.py Version 0.7.0 | Didier Stevens This new version of pecvheck.py adds an overview of sections. More details here. pecheck-v0_7_0.zip (https) MD5: 7BE550EC71BF99FC31704C2DD4ED3C8A SHA256:... update pecheck pyversion Sponsored https://www.bootycallz.com/ Booty Callz - World's Sexiest Black Hookup Dating @ BootyCallz.com https://blog.didierstevens.com/2017/11/06/update-oledump-py-version-0-0-30/ Update: oledump.py Version 0.0.30 | Didier Stevens This new version of oledump.py detects and analyses orphaned streams. More info on orphaned streams can be found in this blogpost. oledump_V0_0_30.zip (https)... update oledump pyversion https://blog.didierstevens.com/2020/03/15/pecheck-py-version-0-7-10/ pecheck.py Version 0.7.10 | Didier Stevens In this new version of pecheck.py, a tool to analyze PE files, overlay offset calculations are improved when a digital signature is present, and the output has... pecheck py versiondidier https://blog.didierstevens.com/programs/oledump-py/ oledump.py | Didier Stevens Here is a set of free YouTube videos showing how to use my tools: Workshop Malicious Documents. oledump.py is a program to analyze OLE files (Compound File... py didier stevensoledump https://blog.didierstevens.com/2018/05/08/update-base64dump-py-version-0-0-9/ Update: base64dump.py Version 0.0.9 | Didier Stevens py versiondidier stevens https://blog.didierstevens.com/2018/02/19/update-oledump-py-version-0-0-33/ Update: oledump.py Version 0.0.33 | Didier Stevens This new version of oledump can output the content of all streams in JSON format, and has a new plugin for MSI files: plugin_msi.py. oledump_V0_0_33.zip... update oledump pyversion https://blog.didierstevens.com/2017/12/11/new-tool-hash-py/ New Tool: hash.py | Didier Stevens py didier stevensnew toolhash https://blog.didierstevens.com/2023/01/22/new-tool-onedump-py/ New Tool: onedump.py | Didier Stevens This is a new tool (based on my Python template for binary files) to analyze OneNote files. This version is limited to handling embedded files (for the... py didier stevensnew tool https://blog.didierstevens.com/2020/12/19/update-strings-py-version-0-0-6/ Update: strings.py Version 0.0.6 | Didier Stevens This new update to strings.py, my tool to extract strings, brings statistics with a new option: -a. This option can be used together with other filtering... py versiondidier stevens https://blog.didierstevens.com/2022/05/26/update-pecheck-py-version-0-7-15/ Update: pecheck.py Version 0.7.15 | Didier Stevens This new version of pecheck.py, my tool to analyze PE files, brings some extra information on overlays: pecheck-v0_7_15.zip (http)MD5:... update pecheck pyversion https://blog.didierstevens.com/2019/02/28/update-pdf-parser-py-version-0-7-0/ Update: pdf-parser.py Version 0.7.0 | Didier Stevens This new version of pdf-parser brings support for analysis of stream objects (/ObjStm). Use new option -O to enable this mode. Stream objects (/ObjStm) are... update pdf parserpy version https://blog.didierstevens.com/2018/06/22/update-jpegdump-py-version-0-0-6/ Update: jpegdump.py Version 0.0.6 | Didier Stevens A small update to indicate a file was decompressed: jpegdump_V0_0_6.zip (https) MD5: 14FFB9016A9181DB3A59370B2E0DAFF2 SHA256:... jpegdump pydidier stevens https://blog.didierstevens.com/2021/05/25/update-base64dump-py-version-0-0-14/ Update: base64dump.py Version 0.0.14 | Didier Stevens This new version of base64dump.py supports a new encoding: NETBIOS Name encoding. NETBIOS Name encoding is very similar to hexadecimal encoding: in stead of... py versiondidier stevens https://blog.didierstevens.com/2019/03/25/update-pecheck-py-version-0-7-6/ Update: pecheck.py Version 0.7.6 | Didier Stevens update pecheck pyversion https://blog.didierstevens.com/2017/12/19/new-tool-format-bytes-py/ New Tool: format-bytes.py | Didier Stevens I regularly copy bytes from my command-line tool over to 010 Editor to have this data represented by the Inspector using different formats, like this:... format bytes pynew tooldidier https://blog.didierstevens.com/2018/01/29/new-tool-jpegdump-py/ New Tool: jpegdump.py | Didier Stevens py didier stevensnew tool https://blog.didierstevens.com/2016/09/19/update-translate-py-version-2-3-1/ Update: translate.py Version 2.3.1 | Didier Stevens I needed to decompress the content of a Flash file (.swf). I thought of using my translate.py program with a command to inflate (zlib) the content (minus the... update translate pyversion https://blog.didierstevens.com/2019/06/10/update-sets-py-version-0-0-3/ Update: sets.py Version 0.0.3 | Didier Stevens sets.py is a program to perform set operations. In this new version, I added operations unique, product, substitute and sort. And I added options -s and -i.... update setspy versiondidier https://blog.didierstevens.com/2019/11/09/update-format-bytes-py-version-0-0-10/ Update: format-bytes.py Version 0.0.10 | Didier Stevens This new version of format-bytes.py, a tool to parse binary data, comes with support for bit streams. This can help, for example, with decoding steganographic... format bytes pydidier stevens https://blog.didierstevens.com/2018/12/19/updateoledump-py-version-0-0-40/ Update:oledump.py Version 0.0.40 | Didier Stevens update oledump pyversion https://blog.didierstevens.com/2018/01/30/update-translate-py-version-2-5-2/ Update: translate.py Version 2.5.2 | Didier Stevens Yesterday I had to analyze a malicious document, carrying embedded PowerShell scripts with Gzip compression. I use translate.py to do the Gzib decompression as... update translate pyversion https://blog.didierstevens.com/2022/07/24/update-re-search-py-version-0-0-21/ Update: re-search.py Version 0.0.21 | Didier Stevens This new version of re-search.py adds a regex for UNCs to the library and has a Python 3 fix. re-search_V0_0_21.zip (http)MD5:... py versiondidier stevens https://blog.didierstevens.com/2020/08/30/update-oledump-py-0-0-53/ Update: oledump.py 0.0.53 | Didier Stevens update oledump pydidier https://blog.didierstevens.com/2019/10/27/update-pecheck-py-version-0-7-8/ Update: pecheck.py Version 0.7.8 | Didier Stevens This new version of pecheck.py, a tool to analyze PE files, comes with a small update to option -l. The overview of embedded PE files produced with option -l P... update pecheck pyversion https://blog.didierstevens.com/2017/03/05/update-re-search-py-version-0-0-3/ Update: re-search.py Version 0.0.3 | Didier Stevens A very small update to re-search.py: I added a regular expression for strings to the library: re-search_V0_0_3.zip (https) MD5:... py versiondidier stevens https://blog.didierstevens.com/2016/03/11/update-oledump-py-version-0-0-23/ Update: oledump.py Version 0.0.23 | Didier Stevens I’m providing a 2-day training at Brucon Spring Training 2016: “Analysing Malicious Documents“. Use promo-code SPRING16 for a 10% discount. This new... update oledump pyversion https://blog.didierstevens.com/2017/05/13/update-re_search-py-version-0-0-5/ Update: re_search.py Version 0.0.5 | Didier Stevens When I used my re-search.py tool to extract Bitcoin addresses from the latest WCry samples, I found a small bug. This version is a bugfix (bug introduced in... py versiondidier stevens https://blog.didierstevens.com/2020/01/26/update-format-bytes-py-version-0-0-11/ Update: format-bytes.py Version 0.0.11 | Didier Stevens As announced in my previous blog post, this new version of format-bytes.py adds a pack expression (#p#) and other features and (Python 3) bug fixes. A pack... format bytes pydidier stevens https://blog.didierstevens.com/2018/07/01/update-re-search-py-version-0-0-11/ Update: re-search.py Version 0.0.11 | Didier Stevens This new version of re-search.py comes with a new option: -e. This option instructs re-search to read its input as a binary file and extract strings from it,... py versiondidier stevens https://blog.didierstevens.com/2017/03/07/update-oledump-py-version-0-0-27/ Update: oledump.py Version 0.0.27 | Didier Stevens This new version of oledump.py adds some extra features for YARA rule scanning. oledump.py declares 2 external variables that can be used in your YARA rules.... update oledump pyversion https://blog.didierstevens.com/2016/12/12/updateoledump-py-version-0-0-26/ Update: oledump.py Version 0.0.26 | Didier Stevens Just a small change in this version: an indicator (O) for streams containing OLE 1.0 embedded data: And plugin_http_heuristics also detects XOR-encoding... update oledump pyversion https://blog.didierstevens.com/2019/04/25/update-python-per-line-py-version-0-0-6/ Update: python-per-line.py Version 0.0.6 | Didier Stevens py versionupdatepythonperline