Alternatives and similar repositories for pefile-go

Users that are interested in pefile-go are comparing it to the libraries listed below

• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 4 months ago
• guitmz / go-liora
  Probably the first binary (PE/ELF) infector ever created in GoLang.
  ☆50Updated 3 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 7 months ago
• goretk / libgore
  Libgore
  ☆13Updated 2 years ago
• guitmz / gocave
  Finding code caves in ELF files with GoLang
  ☆26Updated 7 years ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆53Updated 5 years ago
• kryptoslogic / binja_degobfuscate
  Fix Go obfuscated binaries that were obfuscated using gobfuscator
  ☆47Updated 3 years ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆64Updated 3 years ago
• En14c / Erebus
  Poc for ELF64 runtime infection via GOT poisoning technique by elfmaster
  ☆29Updated 5 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆32Updated last year
• omarghader / pefile-go
  Golang port of pefile
  ☆23Updated 8 years ago
• jpap / go-zydis
  Zydis Bindings for Go
  ☆26Updated 4 years ago
• Northern-Lights / yara-parser
  Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
  ☆85Updated 2 years ago
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆50Updated 6 years ago
• jhsmith / flareon
  Random stuff for FlareOn
  ☆13Updated 6 years ago
• DevelopersPL / gonotifyav
  Resident (inotify) Anti-Malware Scanner using rules from Linux Malware Detect project
  ☆11Updated 11 years ago
• m0hamed / lkm-rootkit
  A rootkit implemented as a linux kernel module
  ☆17Updated 10 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆88Updated 9 years ago
• herrcore / aplib-ripper
  Use this library to automatically extract PE files compressed with aplib from a binary blob.
  ☆34Updated 6 years ago
• libyal / libevt
  Library and tools to access the Windows Event Log (EVT) format
  ☆60Updated last year
• mtth-bfft / ntsec
  Standalone tool to explore the security model of Windows and its NT kernel. Use it to introspect privilege assignments and access right a…
  ☆33Updated 6 years ago
• HexHive / malWASH
  ☆115Updated 8 years ago
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆168Updated 3 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• alexander-hanel / ida_yara
  A python script that can be used to scan data within in an IDB using Yara.
  ☆23Updated 6 years ago
• andrew-d / binscope
  Check a Windows PE file for some basic security flags
  ☆12Updated 10 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆36Updated 7 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• f0wl / ezuri_unpack
  Simple unpacking script for Ezuri ELF Crypter
  ☆35Updated 4 years ago
• Binject / forger
  ☆20Updated 6 years ago