Version 0.5.0

What's New

The main highlights of this release include the following:

• add ole-tools and some default plugins
• add concurrent threads and update plugins to be compatible.
• add pre-commit hooks for formatting

What's Changed

The main changes to this release include the following:

• M2Crypto has been removed as a dependency
• update Dockerfile, upgrade to Ubuntu 24.04
• rename function within dmg_hashes to reflect plugin name
• Update dependencies and tools to latest versions

To use pre-commit before committing to this project, please run:
poetry pre-commit install
Pre-commit is installed as a dependency.

Full Changelog: 0.4.4...0.5.0

Docker images for this release are available from: https://hub.docker.com/r/arat/deject

Version 0.4.4

What's Changed

• General maintenance - nix flake update, poetry update, bump setuptools version, add nix instructions to the README by @unrooted in #2
• Mach-o parser updated - show raw flags in hex, add SegmentCommand parsing
• Update external tools - update tools from DidierStevensSuite to latest versions

Full Changelog: 0.4.3...0.4.4

Docker images for this release are available from: https://hub.docker.com/r/arat/deject

Version 0.4.3

What's Changed

• added nix flake by @unrooted in #1
• added Mach-o Fat parser
• fixed Mach-o parser extract function
• added functionality to PE parser

Full Changelog: 0.4.1...0.4.3

Docker images for this release are available from: https://hub.docker.com/r/arat/deject

Version 0.4.1

What's New

New parsers for PE / ELF / Mach-o files

These new parsers use the Kaitai framework to analyse the respective file.

To run them, select the individual plugin, as the parsers are not enabled by default:

• deject run --include macho_parser

Further script updates

Updated 1768.py, pdf-parser.py.

Updated all submodules to their latest versions.

Added pre-build Docker images

These are available here: https://hub.docker.com/r/arat/deject
(Supports amd64 and arm64 architectures.)