Alternatives and similar repositories for pefile-go

Users that are interested in pefile-go are comparing it to the libraries listed below

• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 8 months ago
• soluwalana / pefile-go
  Golang port of PEFile
  ☆31Updated 5 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆48Updated 3 weeks ago
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆54Updated 7 years ago
• Northern-Lights / yara-parser
  Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
  ☆85Updated 2 years ago
• malice-plugins / windows-defender
  Malice Windows Defender AntiVirus Plugin
  ☆39Updated 2 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• cylance / rogers
  Python command-line tool that uses nearest neighbor search methods for malware similarity analysis
  ☆16Updated 6 years ago
• malice-plugins / pescan
  Malice PExecutable Plugin
  ☆16Updated 4 years ago
• libyal / libevt
  Library and tools to access the Windows Event Log (EVT) format
  ☆60Updated last year
• Techlord-RCE / VB-Exe-Parser
  VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …
  ☆18Updated 9 years ago
• williballenthin / python-vb
  analysis of visual basic code
  ☆45Updated 7 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 6 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆33Updated last year
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆124Updated 5 years ago
• MacDue / ssdeep-windows-32_64
  ssdeep for python on windows
  ☆18Updated 7 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆37Updated 8 years ago
• sebmarchand / pyetw
  ☆13Updated 9 years ago
• 1Project / Scanr
  Detect x86 shellcode in files and traffic.
  ☆25Updated 7 years ago
• jhsmith / flareon
  Random stuff for FlareOn
  ☆14Updated 7 years ago
• JannisKirschner / Cutter-Yara-Plugin
  Apply YARA rules to your Cutter projects.
  ☆16Updated 5 years ago
• maliceio / malice-av
  Malice AntiVirus Plugins
  ☆114Updated 7 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆88Updated 9 years ago
• jbremer / vb6tracer
  Runtime tracer for the vb6 virtual machine
  ☆55Updated 7 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆73Updated 3 years ago
• hasherezade / tag_converter
  ☆23Updated 4 years ago
• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆71Updated 8 months ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆54Updated 6 years ago
• you0708 / lznt1
  Python implementation of LZNT1 compression/decompression
  ☆65Updated 5 years ago