0xrawsec / golang-evtxLinks
☆165Updated 2 years ago
Alternatives and similar repositories for golang-evtx
Users that are interested in golang-evtx are comparing it to the libraries listed below
Sorting:
- Golang library that implements a sigma log rule parser and match engine.☆95Updated last year
- Signature engine for all your logs☆171Updated last year
- simple YARA-based IOC scanner☆169Updated this week
- APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)☆53Updated 8 months ago
- A Go implementation and parser for Sigma rules.☆88Updated 2 months ago
- Golang Parser for Microsoft Event Logs☆104Updated last month
- A Go implementation of JARM☆119Updated 3 years ago
- Cross-platform Yara scanner written in Go☆329Updated 2 years ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- ☆164Updated 4 years ago
- Go library for ETW (Event Tracing for Windows) events processing☆67Updated 3 years ago
- SSDEEP hash lib in Golang☆109Updated last year
- Go bindings for YARA☆375Updated last month
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆186Updated 2 weeks ago
- Log newly created WMI consumers and processes to the Windows Application event log☆124Updated 7 years ago
- enpoint detection / live analysis & sandbox host / signatures quality test☆44Updated 4 years ago
- An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal☆202Updated 3 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆104Updated 4 years ago
- SysmonX - An Augmented Drop-In Replacement of Sysmon☆215Updated 5 years ago
- Code and yara rules to detect and analyze Cobalt Strike☆269Updated 4 years ago
- Go library for subscribing to Windows Event Log☆30Updated 6 years ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆189Updated 4 years ago
- Malware Sinkhole List in various formats☆102Updated 3 years ago
- Collect autorun records from running system☆60Updated 3 years ago
- utmp file dumper, written in golang. Output to json or tsv or csv.☆33Updated last year
- ☆174Updated 4 years ago
- Rule sets for Sagan☆105Updated 4 years ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆78Updated last month