ddda8bdafa- Enable sle15_python_module_pythons.
Sebastian Wagner
2024-09-25 14:24:47 +00:00
ec193b5337- update to version 0.60.2: - fixed a bug in open_slk (issue #797, PR #769) - fixed a bug due to new PROJECTCOMPATVERSION record in dir stream (PR #723, issues #700, #701, #725, #791, #808, #811, #833) - oleobj: fixed SyntaxError with Python 3.12 (PR #855), SyntaxWarning (PR #774) - rtfobj: fixed SyntaxError with Python 3.12 (PR #854) - clsid: added CLSIDs for MSI, Zed - ftguess: added MSI, PNG and OneNote formats - pyxswf: fixed python 3.12 compatibility (PR #841, issue #813)
Sebastian Wagner
2024-09-20 07:04:15 +00:00
bb03356415This package should always have been in forensics, not in d:l:py as it's not a tool helping in python development, but specifically for forensicsJan Engelhardt2024-09-04 07:20:27 +00:00
979d829fa6Accepting request 1145461 from devel:languages:pythonAna Guerrero2024-02-09 22:54:42 +00:00
a4e1c784c5- Update to version 0.60.1: * olevba: * fixed a bug when calling XLMMacroDeobfuscator (PR #737) * removed keyword "sample" causing false positives * oleid: fixed OleID init issue (issue #695, PR #696) * oleobj: * added simple detection of CVE-2021-40444 initial stage * added detection for customUI onLoad * improved handling of incorrect filenames in OLE package (PR #451) * rtfobj: fixed code to find URLs in OLE2Link objects for Py3 (issue #692) * ftguess: * added PowerPoint and XPS formats (PR #716) * fixed issue with XPS and malformed documents (issue #711) * added XLSB format (issue #758) * improved logging with common module log_helper (PR #449) * More details about fixed issues and improvements in 0.60: https://github.com/decalage2/oletools/milestone/10?closed=1
Sebastian Wagner
2024-02-02 14:35:27 +00:00
6548e447cb- update to version 0.60: - ftguess: new tool to identify file formats and containers (issue #680) - oleid: (issue #679) - each indicator now has a risk level - calls ftguess to identify file formats - calls olevba+mraptor to detect and analyse VBA+XLM macros - olevba: - when XLMMacroDeobfuscator is available, use it to extract and deobfuscate XLM macros - rtfobj: - use ftguess to identify file type of OLE Package (issue #682) - fixed bug in re_executable_extensions - crypto: added PowerPoint transparent password '/01Hannes Ruescher/01' (issue #627) - setup: XLMMacroDeobfuscator, xlrd2 and pyxlsb2 added as optional dependencies
Sebastian Wagner
2021-06-21 07:20:36 +00:00
afe3ff37e1- update to version 0.56.2: - olevba: - updated plugin_biff to v0.0.22 to fix a bug (issues #647, #674) - olevba, mraptor: - added detection of Workbook_BeforeClose (issue #518) - rtfobj: - fixed bug when OLE package class name ends with null characters (issue #507, PR #648) - oleid: - fixed bug in check_excel (issue #584, PR #585) - clsid: - added several CLSIDs related to MS Office click-to-run issue CVE-2021-27058 - added checks to ensure that all CLSIDs are uppercase (PR #678)
Sebastian Wagner
2021-05-09 09:54:24 +00:00
ab6d2d06ac- update to version 0.56.1: - olevba: - fixed bug when parsing some malformed files (issue #629) - oleobj: - fixed bug preventing detection of links 'externalReference', 'frame', 'hyperlink' (issue #641, PR #670) - setup: - avoid installing msoffcrypto-tool when platform is PyPy+Windows (issue #473) - PyPI version is now a wheel package to improve installation and avoid antivirus false positives due to test files (issues #215, #398)
Sebastian Wagner
2021-04-05 19:32:20 +00:00
Ana Guerrero
Sebastian Wagner
Dominique Leuenberger
Jan Engelhardt
Matej Cepl