c-rosenberg
c-rosenberg
Explicitly analyze formulas in XLM Macros. It seems this commit is the root cause. https://github.com/decalage2/oletools/commit/1624ef07959340e49ffdf27f5fac49c73c0760a0 Maybe more good cbiff options are omitted now? https://app.any.run/tasks/ab1be06f-c760-4b51-b0ba-1d37f6e59a38/ [xlm_formula_exec.zip](https://github.com/decalage2/oletools/files/5372638/xlm_formula_exec.zip) (infected)
Add support for the Rest API of Avast Business Antivirus for Linux. https://businesshelp.avast.com/Content/Products/AfB_Antivirus/Linux/InstallingAvastBusinessAntivirusLinux.htm
When using application/octet-stream mime-type filter in Rspamd, many times it not an office file. Currently olefy just returnes "unhandled oletools error" instead of an concrete error message.
olefy should scan a file using rtfobj when olevba reports the file is RFT and not OLE.