Package modules :: Package packages :: Module doc :: Class DOC
[hide private]
[frames] | no frames]

Class DOC

source code

                  object --+    
                           |    
lib.common.abstracts.Package --+
                               |
                              DOC

Word analysis package.

Instance Methods [hide private]
 
start(self, path)
Run analysis package.
source code

Inherited from lib.common.abstracts.Package: __init__, check, enum_paths, execute, finish, get_path, get_path_glob, init_regkeys, move_curdir, package_files, set_pids

Inherited from object: __delattr__, __format__, __getattribute__, __hash__, __new__, __reduce__, __reduce_ex__, __repr__, __setattr__, __sizeof__, __str__, __subclasshook__

Class Variables [hide private]
  PATHS = [("ProgramFiles", "Microsoft Office", "WINWORD.EXE"), ...
  REGKEYS = [[HKEY_CURRENT_USER, "Software\\Microsoft\\Office\\1...
Properties [hide private]

Inherited from object: __class__

Method Details [hide private]

start(self, path)

source code 

Run analysis package.

Raises:
  • NotImplementedError - this method is abstract.
Overrides: lib.common.abstracts.Package.start
(inherited documentation)

Class Variable Details [hide private]

PATHS

Value:
[("ProgramFiles", "Microsoft Office", "WINWORD.EXE"), ("ProgramFiles",\
 "Microsoft Office", "Office10", "WINWORD.EXE"), ("ProgramFiles", "Mic\
rosoft Office", "Office11", "WINWORD.EXE"), ("ProgramFiles", "Microsof\
t Office", "Office12", "WINWORD.EXE"), ("ProgramFiles", "Microsoft Off\
ice", "Office14", "WINWORD.EXE"), ("ProgramFiles", "Microsoft Office",\
 "Office15", "WINWORD.EXE"), ("ProgramFiles", "Microsoft Office", "Off\
ice16", "WINWORD.EXE"), ("ProgramFiles", "Microsoft Office 15", "root"\
, "office15", "WINWORD.EXE"), ("ProgramFiles", "Microsoft Office", "ro\
...

REGKEYS

Value:
[[HKEY_CURRENT_USER, "Software\\Microsoft\\Office\\12.0\\Common\\Gener\
al", {"ShownOptIn": 1,},], [HKEY_CURRENT_USER, "Software\\Microsoft\\O\
ffice\\12.0\\Word\\Security", {"VBAWarnings": 1, "AccessVBOM": 1, "Ext\
ensionHardening": 0,},], [HKEY_CURRENT_USER, "Software\\Microsoft\\Off\
ice\\16.0\\Word\\Security", {"VBAWarnings": 1, "AccessVBOM": 1,},],]