oletools-mcp-server
4
OLETools Secure MCP Server is a microservice designed for static analysis of Microsoft Office documents to detect and analyze potential threats. It employs a range of external tools to identify suspicious elements and integrates with systems that support the MCP protocol.
OLETools Secure MCP Server
This project provides a secure microservice to analyze Microsoft Office documents and related file types for malicious content using static analysis. It utilizes tools including oletools, XLMMacroDeobfuscator, and pefile.
Features
- Analyzes VBA Macros
- Detects XLM Macros
- Checks for DDE Links
- Extracts embedded OLE Objects
- Analyzes XLL file exports
- Extracts IOCs such as URLs, IPs, Hashes, and Emails
- Provides MIME type and file size validation
- Includes a configurable scoring system for risk classification
Prerequisites
- Python 3.6+
- OLETools
- XLMMacroDeobfuscator
- python-magic
- iocextract (optional)
- Claude Desktop application