This is a Python 3 update for my tool to analyze RTF files. There are some new features, like option -O, to produce an overview:
More details in upcoming maldoc analysis posts.
rtfdump_V0_0_10.zip (https)
MD5: E7D235AC14A83DAABCD433DE1948E989
SHA256: 750430C0DA0B9D25B0BBBB972F107D1459FEAF45A2D61EAB6C10E84CB8AA01F8
[…] Didier StevensUpdate: rtfdump.py Version 0.0.10 […]
Pingback by Week 1 – 2021 – This Week In 4n6 — Sunday 3 January 2021 @ 4:35
[…] strings.py, oledump.py, zipdump.py, re-search.py, rtfdump.py and shellcode emulator […]
Pingback by Doc & RTF Malicious Document – Didier Stevens Videos — Tuesday 26 January 2021 @ 23:42