Oletools#

This tool is used for gathering infomration on office documents (DOC, XML, PPT, OpenOffice etc). All are built on the OLE (object Linking and Embedding) format, which underneath is basically a .zip with subfolders for relevant data. decalage2/oletools

Installation#

As this is a python tools (python-oletools), it’s installed using pip

pip install python-oletools

Running oleid#

OleID is the first tool we can run, it provides information on the file itself and common locations that ay be of interest.

Oletools_OleID.png
Oletools_OleObj.png