Eviloffice : Inject Macro & DDE Code Into Excel & Word Documents

Eviloffice is a tool used to inject macro and DDE code into Excel and Word documents (reverse shell).

Features

• Inject malicious Macro on formats: docm, dotm, xlsm, xltm
• Inject malicious DDE code on formats: doc, docx, dot, xls, xlsx, xlt, xltx
• Python2/Python3 Compatible
• Tested: Win10 (MS Office 14.0)

Requirements

• Microsoft Office (Word/Excel)
• pywin32: python -m pip install -r requirements.txt

Also Read – Guardedbox : Online Client-Side Manager For Secure Storage & Secrets Sharing

Forwarding Requirements

• Ngrok Authtoken (for TCP Tunneling): Sign up at: https://ngrok.com/signup
• Your authtoken is available on your dashboard: https://dashboard.ngrok.com
• Install your auhtoken: ./ngrok authtoken

Usage

git clone https://github.com/thelinuxchoice/eviloffice
cd eviloffice
python -m pip install -r requirements.txt
python eviloffice.py

Disclaimer

Usage of EvilOffice for attacking targets without prior mutual consent is illegal. It’s the end user’s responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.