This new version of base64dump adds decoding of netbios name encoding with lowercase letters.
base64dump_V0_0_21.zip (http)MD5: 5701B6D9691E366ED5E2EE6D06689012
SHA256: BE939E0225C83319A31A096DA29C1CA9D3C575DCCE9C1795814B335BD0871E92
This new version of base64dump adds decoding of netbios name encoding with lowercase letters.
base64dump_V0_0_21.zip (http)This new version of oledump.py brings support for user defined properties and an update to plugin plugin_msg_summary.py
Office documents with VSTO applications have user defined properties. These properties can be extracted with my plugin plugin_medata.py, but not with the current version of olefile.
However, the development version of olefile can be used to extract these properties. This new version of oledump checks if the olefile module has a function to extract user defined properties (get_userdefined_properties), and if it does, it calls it when analyzing metadata:
I added URL extracting to my plugin plugin_msg_summary, a plugin to summarize the content of an .msg file (Outlook email).
This is just a bugfix version.
zipdump_v0_0_22.zip (http)In this update for cs-parse-traffic.py, my tool to decrypt & parse Cobalt Strike traffic, I added some error handling.
cs-parse-traffic_V0_0_5.zip (http)This new version of oledump.py brings some fixes and an update to plugin plugin_vbaproject to decode and display the password for plaintext passwords: