Alternatives and similar repositories for vfilter:

Users that are interested in vfilter are comparing it to the libraries listed below

• Velocidex / oleparse
  Golang parser for OLE files
  ☆31Updated 8 months ago
• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆67Updated last week
• MonaxGT / gomalshare
  Go library MalShare API
  ☆12Updated 5 years ago
• rhaist / surevego
  suricata eve.json parser in Go
  ☆14Updated 5 years ago
• omarghader / pefile-go
  Golang port of pefile
  ☆23Updated 7 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• soluwalana / pefile-go
  Golang port of PEFile
  ☆29Updated 4 years ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated 11 months ago
• frikky / hive4go
  A Golang API for TheHive
  ☆13Updated 4 years ago
• cert-lv / graphoscope
  Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph
  ☆37Updated 2 months ago
• Velocidex / go-prefetch
  A golang implementation of a prefetch parser.
  ☆19Updated 5 months ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated last month
• TcM1911 / stix2
  A pure Go library for working with Structured Threat Information Expression (STIX™) version 2.x data
  ☆23Updated 4 months ago
• goretk / libgore
  Libgore
  ☆13Updated last year
• chrispassas / nfdump
  NFDump File Reader
  ☆11Updated 3 months ago
• bradleyjkemp / sigma-go
  A Go implementation and parser for Sigma rules.
  ☆86Updated 5 months ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 3 years ago
• t9t / gomft
  NTFS Master File Table (MFT) parser for Go.
  ☆43Updated 6 months ago
• scalingdata / gowinlog
  Go library for subscribing to Windows Event Log
  ☆29Updated 5 years ago
• forensicanalysis / fslib
  📚 A collection of tools and libraries to parse filesystems, archives and other data types
  ☆20Updated 4 months ago
• jonpulsifer / dnsmon-go
  A golang DNS monitor inspired by https://github.com/gamelinux/passivedns
  ☆29Updated this week
• marirs / capa-rs
  File Capability Extractor
  ☆13Updated 3 months ago
• xyproto / ainur
  Detect compiler names and versions from ELF files
  ☆25Updated 5 months ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆68Updated 9 months ago
• vulsio / go-cti
  Build a local copy of MITRE ATT&CK and CAPEC. Server mode for easy querying.
  ☆32Updated this week
• myntra / cortex
  A fault-tolerant events/alerts correlation engine
  ☆25Updated 5 years ago
• MonaxGT / gosddl
  GoSDDL converter
  ☆11Updated 5 years ago
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆101Updated last month
• jasonish / dumpy
  A web frontend to libpcap spool directories as produced by tcpdump or daemonlogger.
  ☆26Updated 8 months ago
• joeke80215 / dumpcat
  dump network packet and log to database
  ☆9Updated 2 years ago