Scripting of the Week: pylnk

Today let’s talk about pylnk, the Python module for liblnk. Many libraries are available from Joachim Metz and it allow analysts script parsing various artifacts. Using pylnk can provide LNK parsed information in a particular product (JSON or CSV).

Matt is the author of the post “Scripting Saturday: pylnk”, he reveals in his blog about the discovery and extraction of data from LNC files, and is stopped briefly on the output options with this simple script. After installing pylnk, you can import it at any session or Python script, simply by using import pylnk. Matt explains in detail how to work with pylnk.

More.

DISCLAIMER: THIS POST IS FOR INFORMATIONAL PURPOSES ONLY AND IS NOT TO BE CONSIDERED LEGAL ADVICE ON ANY SUBJECT MATTER. DIGITAL FORENSICS CORP. IS NOT A LAWFIRM AND DOES NOT PROVIDE LEGAL ADVICE OR SERVICES. By viewing posts, the reader understands there is no attorney-client relationship, the post should not be used as a substitute for legal advice from a licensed professional attorney, and readers are urged to consult their own legal counsel on any specific legal questions concerning a specific situation.

News

Scripting of the Week: pylnk

Read Next

USA Passes Take It Down Act: Fighting NCII at the Federal Level

Operation Artemis: FBI Arrests 22 in International Sextortion Crackdown

Digital Forensics Corp. Launches Pro Bono Initiative to Combat Sextortion Targeting Minors

Digital Forensics Corp. Launches 2025 Sextortion Study to Uncover the True Scope of a Growing Cybercrime