Alternatives and similar repositories for pefile-go

Users that are interested in pefile-go are comparing it to the libraries listed below

• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 5 months ago
• soluwalana / pefile-go
  Golang port of PEFile
  ☆31Updated 5 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 8 months ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• Northern-Lights / yara-parser
  Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
  ☆85Updated 2 years ago
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆52Updated 7 years ago
• libyal / libevt
  Library and tools to access the Windows Event Log (EVT) format
  ☆60Updated last year
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• Velocidex / go-yara
  Go bindings for YARA
  ☆14Updated last week
• jpap / go-zydis
  Zydis Bindings for Go
  ☆26Updated 4 years ago
• malice-plugins / windows-defender
  Malice Windows Defender AntiVirus Plugin
  ☆39Updated 2 years ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆53Updated 5 years ago
• sebmarchand / pyetw
  ☆13Updated 9 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆123Updated 4 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆37Updated 8 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆33Updated last year
• cylance / rogers
  Python command-line tool that uses nearest neighbor search methods for malware similarity analysis
  ☆16Updated 6 years ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated last year
• you0708 / lznt1
  Python implementation of LZNT1 compression/decompression
  ☆65Updated 5 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• malice-plugins / pescan
  Malice PExecutable Plugin
  ☆16Updated 4 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆72Updated 3 years ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆20Updated 5 years ago
• hfiref0x / MpEnum
  Enumerate Windows Defender threat families and dump their names according category
  ☆91Updated 6 years ago
• avast / yaramod
  Parsing of YARA rules into AST and building new rulesets in C++.
  ☆126Updated last week
• conix-security / machoke
  ☆52Updated 6 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• jhsmith / flareon
  Random stuff for FlareOn
  ☆14Updated 6 years ago
• CERT-Polska / ursadb
  Trigram database written in C++, suited for malware indexing
  ☆126Updated 10 months ago
• MacDue / ssdeep-windows-32_64
  ssdeep for python on windows
  ☆17Updated 7 years ago