Forensics Archives

BIFF Command Viewer for Microsoft OLE Excel XLS – BiffView++

April 7, 2020 April 7, 2020 / Security / Forensics, Malware Analysis, Microsoft Office, Portable / Leave a Comment

BIFF Command Viewer usage Guide – “BiffView++” shows the structure of older Microsoft Excel XLS file format (OLE structure / Compound File Binary container)

OfficeMalScanner – Microsoft Office Files Malware Scanner

April 6, 2020 April 6, 2020 / Security / Forensics, Malware Analysis, Microsoft Office / Leave a Comment

Learn how to use OfficeMalScanner – Microsoft Office Malware Scanner (Word / Excel / PowerPoint) for Malicious Macros, PE. Including Usage examples and tips

Python Oletools Setup, Use – Microsoft Office File Analysis

March 30, 2020 April 6, 2020 / Security / Forensics, Malware Analysis, Microsoft Office / Leave a Comment

This guide will help you setup python oletools by Decalage and show you some usage examples. Oletools are used to analyze types of Microsoft Office Files

Imphash usage in Malware Analysis – Categorizing Malware

March 7, 2020 March 7, 2020 / Security / Forensics, Malware Analysis / 1 Comment

Imphash usage can help you categorize Malware to a certain adversary or a Malware family. You will learn how to install and use imphash in Malware analysis

Extract VBA Macro from Microsoft Word and Excel – oledump

February 22, 2020 April 6, 2020 / Security / Forensics, Malware Analysis, Microsoft Office / Leave a Comment

In this guide you will understand how to setup and use Didier Stevens oledump python tool to Extract VBA Macro from Microsoft Excel / Word / Office files