This version has a user-friendlier handling of files that are not rtf:
Last months, I’ve seen many maldocs that disguise .doc files as .rtf.
rtfdump_V0_0_4.zip (https)
MD5: C384FD5356DA4E2129E44903BA20966A
SHA256: 0B73AB16577BDB1DC0B1431013E28893004DD563DD4C4D00BA1D20B1DBAED917
[…] Didier Stevens updated his Python script rtfdump to version 0.0.4 to improve dealing with files that are not RTF. Update: rtfdump Version 0.0.4 […]
Pingback by Week 35 – 2016 – This Week In 4n6 — Tuesday 6 September 2016 @ 17:51
[…] Update: rtfdump Version 0.0.4 […]
Pingback by Overview of Content Published In August | Didier Stevens — Sunday 18 September 2016 @ 18:36
[…] rtfdump.py […]
Pingback by rtfdump: intro | Didier Stevens Videos — Friday 7 October 2016 @ 11:22
[…] produced 3 videos to show you how to use my rtfdump.py tool to analyze (malicious) RTF […]
Pingback by rtfdump Videos | Didier Stevens — Friday 7 October 2016 @ 11:26
[…] Tool: rtfdump.py […]
Pingback by rtfdump: MS12-027 Maldoc | Didier Stevens Videos — Friday 7 October 2016 @ 11:32
[…] Tool: rtfdump.py […]
Pingback by rtfdump: MS10-087 Maldoc | Didier Stevens Videos — Friday 7 October 2016 @ 11:37