This repository is a collection of my malicious VBA projects and their related blog posts. Feel free to give me a follow on Twitter if you find this useful @JohnWoodman15
VBA Macro | Description | Links |
---|---|---|
Reverse-Shell.vba | Reverse shell written entirely in VBA using Windows API calls | Blog Post / Github Repo |
Parse-Outlook.vba | Parses Outlook for sensitive keywords and file extensions, and exfils them via email (inspired by Adepts of 0xCC) | Blog Post |
Dump-Process.vba | Dumps any user-level process using Windows API calls | Blog Post / Github Repo |
remoteInjector.py | Injects link to remote VBA template into Word doc (Link to README & usage) | Blog Post / Github Repo |