Eviloffice is a script written in python and was created to infect Windows computers by importing Macro and DDL code into Word and Excel documents.
Specifications
- Inject malicious Macro into forms files: docm, dotm, xlsm, xltm
- Inject malicious DDE code in file formats: doc, docx, dot, xls, xlsx, xlt, xltx
- Compatibility with Python2 / Python3
Tested on: Win10 (MS Office 14.0)
Conditions
- Microsoft Office (Word/Excel)
- pywin32: python -m pip install -r requirements.txt
Requirements
- Ngrok Authtoken (for TCP Tunneling): for registration go to: https://ngrok.com/signup
- Your authtoken is available on your control panel: https://dashboard.ngrok.com
- Install auhtoken: ./ngrok authtoken
Terms of Use
Using EvilOffice for attack without consent is illegal. It is the user's responsibility to comply with all applicable local, state, and federal laws. The developers are not responsible for any misuse or damage caused by this program.
Use
git clone https://github.com/thelinuxchoice/eviloffice
cd eviloffice
python -m pip install -r requirements.txt
python eviloffice.py
Application snapshots