Alternatives and similar repositories for vfilter

Users that are interested in vfilter are comparing it to the libraries listed below

• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆70Updated 5 months ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 5 months ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated last year
• MonaxGT / gomalshare
  Go library MalShare API
  ☆12Updated 6 years ago
• markuskont / go-sigma-rule-engine
  Golang library that implements a sigma log rule parser and match engine.
  ☆98Updated last year
• rhaist / surevego
  suricata eve.json parser in Go
  ☆15Updated 6 years ago
• TcM1911 / stix2
  A pure Go library for working with Structured Threat Information Expression (STIX™) version 2.x data
  ☆23Updated 4 months ago
• soluwalana / pefile-go
  Golang port of PEFile
  ☆31Updated 5 years ago
• bradleyjkemp / sigma-go
  A Go implementation and parser for Sigma rules.
  ☆90Updated 3 months ago
• freetaxii / libstix2
  APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)
  ☆54Updated 9 months ago
• t9t / gomft
  NTFS Master File Table (MFT) parser for Go.
  ☆43Updated last year
• scalingdata / gowinlog
  Go library for subscribing to Windows Event Log
  ☆30Updated 6 years ago
• forensicanalysis / fslib
  📚 A collection of tools and libraries to parse filesystems, archives and other data types
  ☆20Updated 10 months ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 8 months ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• cugu / kaitaigo
  kaitaigo is a compiler and runtime to create Go parsers from Kaitai Struct files
  ☆17Updated 3 years ago
• palantir / amalgomate
  Go tool for combining multiple different main packages into a single program or library
  ☆22Updated last week
• glaslos / tlsh
  TLSH lib in Golang
  ☆142Updated 3 weeks ago
• glaslos / ssdeep
  SSDEEP hash lib in Golang
  ☆110Updated last year
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• palantir / goastwriter
  Go library for writing Go source code programatically
  ☆37Updated last week
• jonpulsifer / dnsmon-go
  A golang DNS monitor inspired by https://github.com/gamelinux/passivedns
  ☆30Updated 3 weeks ago
• hashlookup / poppy
  Rust implementation of the DCSO Bloom filter
  ☆28Updated last month
• sad0p / go-readelf
  Elf binary parsing utility written in Go.
  ☆70Updated 2 years ago
• sunwxg / goshark
  ☆19Updated 7 years ago
• cert-lv / graphoscope
  Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph
  ☆39Updated 8 months ago
• agonopol / gosplat
  Easy html charts with go
  ☆79Updated 11 years ago
• kung-foo / freki
  Freki is a tool to manipulate packets in usermode using NFQUEUE and golang.
  ☆58Updated 2 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• DevelopersPL / gonotifyav
  Resident (inotify) Anti-Malware Scanner using rules from Linux Malware Detect project
  ☆11Updated 11 years ago