Alternatives and similar repositories for pefile-go

Users that are interested in pefile-go are comparing it to the libraries listed below

• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 5 months ago
• soluwalana / pefile-go
  Golang port of PEFile
  ☆30Updated 5 years ago
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆50Updated 6 years ago
• malice-plugins / windows-defender
  Malice Windows Defender AntiVirus Plugin
  ☆39Updated 2 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 7 months ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆32Updated last year
• libyal / libevt
  Library and tools to access the Windows Event Log (EVT) format
  ☆60Updated last year
• hfiref0x / MpEnum
  Enumerate Windows Defender threat families and dump their names according category
  ☆90Updated 6 years ago
• sebmarchand / pyetw
  ☆13Updated 9 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• mtth-bfft / ntsec
  Standalone tool to explore the security model of Windows and its NT kernel. Use it to introspect privilege assignments and access right a…
  ☆33Updated 6 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆123Updated 4 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆36Updated 7 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• aking1012 / dc20
  A slightly stripped down version of RID (an exercise in learning python C-Types...some of it is a little rushed/sloppy) and a stripped do…
  ☆51Updated 12 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆88Updated 9 years ago
• williballenthin / python-vb
  analysis of visual basic code
  ☆42Updated 7 years ago
• maliceio / malice-av
  Malice AntiVirus Plugins
  ☆116Updated 6 years ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆20Updated 5 years ago
• DevelopersPL / gonotifyav
  Resident (inotify) Anti-Malware Scanner using rules from Linux Malware Detect project
  ☆11Updated 11 years ago
• malice-plugins / pescan
  Malice PExecutable Plugin
  ☆16Updated 4 years ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆53Updated 5 years ago
• Northern-Lights / yara-parser
  Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
  ☆85Updated 2 years ago
• you0708 / lznt1
  Python implementation of LZNT1 compression/decompression
  ☆65Updated 5 years ago
• EgeBalci / MapPE
  PE file mapping and manipulation package.
  ☆36Updated 3 years ago
• jpap / go-zydis
  Zydis Bindings for Go
  ☆26Updated 4 years ago
• Techlord-RCE / VB-Exe-Parser
  VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …
  ☆17Updated 8 years ago
• cylance / rogers
  Python command-line tool that uses nearest neighbor search methods for malware similarity analysis
  ☆16Updated 6 years ago