Cyber Security News Aggregator
.Cyber Tzar
provide acyber security risk management
platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.
First slide label
Some representative placeholder content for the first slide.
Second slide label
Some representative placeholder content for the second slide.
Third slide label
Some representative placeholder content for the third slide.
Quickpost: emldump Bulk Extraction
published on 2025-06-05 00:00:00 UTC by Didier StevensContent:
A reader asked about bulk extraction of email attachments with emldump.py
If you want to extract all attachments and write them to disk, you can use the following command:
emldump.py --jsonoutput sample.eml | myjson-filter.py -W hashvirThis command will produce a MyJSON data structure will the content and metadata of all parts (not only attachments, also the different bodies) and save the parts to disk with filenames formatted as the sha256 hash of the content and the extension .vir.
You can then run the desired analysis commands on the files written to disk.
But you can also run a command directly on the items, without writing them to disk. Here is an example of such a command:
emldump.py --jsonoutput sample.eml | myjson-filter.py -r "cmd.exe /c oledump.py"This command will start a oledump.py command for each part in the multipart document, and provide the content of each part via stdout.
Quickpost info
https://blog.didierstevens.com/2025/06/05/quickpost-emldump-bulk-extraction/
Published: 2025 06 05 00:00:00
Received: 2025 06 05 00:17:09
Feed: Didier Stevens
Source: Didier Stevens
Category: Cyber Security
Topic: Cyber Security
Views: 17
