Sean Whalen

If I recall correctly, LinkedIn is one of the few services that also sends forensic/ruf reports back. IF the only email is a ruf report, aggrogate,json will be an emptylist,...

Since you are using Microsoft 365, you should use the Microsoft Graph integration instead of IMAP. Check out the `msgraph` section of the [configuration documentation](https://domainaware.github.io/parsedmarc/usage.html) for more details.

@brad-accuvant This does seem hook related. setting DISABLE_HOOK_CONTENT to 1 stops the crashing. In trying to track down the exception, I also tried setting setting REPORT_EXCEPTIONS and REPORT_ALL_EXCEPTIONS to 1,...

Correction to my old post: It looks like this bug only effects 64-bit office. 32-bit office 2013 on windows7 64-bit works fine.

Yeah, I accidentally ran the sample on a 32-bit office box I was testing and thought the bug had been fixed for 64-bit. Seems line this bug only ever effected...

Ooo. Thanks!

@MalwareMechanic I use wrapper scripts as shortcuts to start and stop logging. They are literally the commands described above with friendly filenames on the system PATH. How should I include...

Note: Windows Defender and some other AVs falsely flag this EXE as malware, because it does many of the same VM/sandbox checks that malware does.

Note: The existing chocolatey community packages are improperly configured and outdated.

Weird. Try with the latest version of the content pack