Alternatives and similar repositories for pefile-go

Users that are interested in pefile-go are comparing it to the libraries listed below

• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 7 months ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated last week
• guitmz / go-liora
  Probably the first binary (PE/ELF) infector ever created in GoLang.
  ☆50Updated 3 years ago
• jhsmith / flareon
  Random stuff for FlareOn
  ☆14Updated 7 years ago
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆54Updated 7 years ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆54Updated 6 years ago
• guitmz / gocave
  Finding code caves in ELF files with GoLang
  ☆26Updated 7 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• Northern-Lights / yara-parser
  Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
  ☆85Updated 2 years ago
• herrcore / aplib-ripper
  Use this library to automatically extract PE files compressed with aplib from a binary blob.
  ☆34Updated 6 years ago
• libyal / libevt
  Library and tools to access the Windows Event Log (EVT) format
  ☆60Updated last year
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆65Updated 3 years ago
• kryptoslogic / binja_degobfuscate
  Fix Go obfuscated binaries that were obfuscated using gobfuscator
  ☆47Updated 4 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆30Updated 5 years ago
• omarghader / pefile-go
  Golang port of pefile
  ☆23Updated 8 years ago
• goretk / libgore
  Libgore
  ☆13Updated 2 years ago
• HexHive / malWASH
  ☆115Updated 9 years ago
• andrew-d / binscope
  Check a Windows PE file for some basic security flags
  ☆12Updated 10 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆37Updated 8 years ago
• alexander-hanel / ida_yara
  A python script that can be used to scan data within in an IDB using Yara.
  ☆23Updated 7 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆33Updated last year
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆88Updated 9 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆38Updated 4 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆169Updated 4 years ago
• f0wl / ezuri_unpack
  Simple unpacking script for Ezuri ELF Crypter
  ☆34Updated 4 years ago
• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆70Updated 7 months ago
• Velocidex / go-prefetch
  A golang implementation of a prefetch parser.
  ☆20Updated 2 months ago
• Binject / forger
  ☆20Updated 6 years ago
• ulexec / ElfLocker
  PoC multi-layer protector for ELF32 x86 binaries
  ☆11Updated 3 years ago