Velocidex / go-yaraLinks
Go bindings for YARA
☆14Updated last year
Alternatives and similar repositories for go-yara
Users that are interested in go-yara are comparing it to the libraries listed below
Sorting:
- ssdeep cluster analysis for malware files☆30Updated 5 years ago
- Golang based web service to scan files with yara rules☆26Updated 7 years ago
- A Portable Executable parser for Golang☆47Updated 5 months ago
- Golang parser for OLE files☆32Updated 2 months ago
- A collection of shellcode hashes☆17Updated 6 years ago
- RPC Monitor based on The ETW Microsoft-Windows-Rpc provider☆24Updated 5 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- The plan is to have a replacement for psexec☆31Updated 6 years ago
- Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality☆83Updated 2 years ago
- PE file mapping and manipulation package.☆36Updated 3 years ago
- The code in this repository which function is to extract the shellcode from the maldoc.☆10Updated last year
- YaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.☆44Updated last year
- A golang implementation of a prefetch parser.☆20Updated last week
- Telsy CTI Research Team☆57Updated 4 years ago
- Is this IP a C2 server?☆28Updated 5 years ago
- Lists of AMSI triggers (VBA, JScript / VBScript)☆33Updated 5 years ago
- Windows API/constants, identity, and WinHTTP/WinINet for Go.☆18Updated last month
- Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.☆61Updated last year
- Repository of Yara rules created by the Stratosphere team☆26Updated 3 years ago
- Collect autorun records from running system☆60Updated 3 years ago
- Package that provides different PE tricks to difficult the reverse engineering of your Windows applications.☆11Updated 5 years ago
- Simplified go-cat agent for caldera☆10Updated last year
- All necessary code in order to feed Sysmon data into Recurrent Neural Network☆17Updated 4 years ago
- Golang wrapper for the Microsoft Antimalware Scan Interface (AMSI)☆11Updated 3 years ago
- RDI implementation in Nim☆64Updated 4 years ago
- HTTP Protocol Stack CVE-2021-31166☆13Updated 7 months ago
- 不定期更新suricata的检测规则☆11Updated 5 years ago
- A small utility to deal with malware embedded hashes.☆51Updated last year
- Tool to decrypt the configuration of NanoCore and dump all used plugins☆10Updated 4 years ago
- ☆16Updated 4 years ago