Alternatives and similar repositories for gomft

Users that are interested in gomft are comparing it to the libraries listed below

• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆70Updated 5 months ago
• bi-zone / etw
  Go library for ETW (Event Tracing for Windows) events processing
  ☆67Updated 3 years ago
• tailscale / wf
  Package for controlling the Windows firewall (aka Windows Filtering Platform, WFP)
  ☆107Updated last year
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆127Updated last year
• awgh / cppgo
  Call virtual methods on C++ classes from Go without cgo.
  ☆26Updated 4 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 8 months ago
• 0xrawsec / golang-win32
  Golang wrappers functions to call Windows APIs
  ☆79Updated 3 years ago
• hillu / go-ntdll
  Go interface to NTDLL functions
  ☆78Updated last year
• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 5 months ago
• FourCoreLabs / wintoken
  Mainpulate, Steal and Modify Windows Tokens in Go
  ☆74Updated 2 years ago
• parsiya / golnk
  Golang package for parsing Windows shell link binary (lnk or Windows shortcut) files.
  ☆37Updated 2 years ago
• saferwall / pe
  A lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis ta…
  ☆366Updated 2 months ago
• a-palchikov / wmi
  tiny wrapper around Windows Management Instrumentation API
  ☆13Updated 6 years ago
• nirhaas / gopacker
  UPX-like packer written in Go
  ☆75Updated 3 years ago
• lsegal / cppgo
  Call virtual methods on C++ classes from Go without cgo.
  ☆86Updated last year
• abdullah2993 / go-runpe
  execute a PE in the address space of another PE aka process hollowing
  ☆58Updated 3 years ago
• NaniteFactory / gominhook
  MinHook binding for Go (Golang) with support for Windows API.
  ☆81Updated 6 years ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated last year
• 0xrawsec / golang-etw
  ☆39Updated 2 years ago
• tHinqa / outside-windows
  Win32 API definitions for the Go language
  ☆32Updated 11 years ago
• neox41 / go-procinject
  Process Injection Techniques with Golang
  ☆79Updated 5 years ago
• zaneGittins / go-inject
  Process injection techniques written in Go.
  ☆64Updated 2 years ago
• ropnop / go-clr
  A PoC package for hosting the CLR and executing .NET from Go
  ☆225Updated 2 years ago
• castaneai / hinako
  x86 WinAPI hook written in pure Go
  ☆50Updated 5 years ago
• KnicKnic / go-powershell
  Hosting powershell sessions inside golang not using exec enabling bi directional communication
  ☆123Updated 2 years ago
• scalingdata / gowinlog
  Go library for subscribing to Windows Event Log
  ☆30Updated 6 years ago
• Velocidex / go-ese
  Go implementation of an Extensible Storage Engine parser
  ☆30Updated 6 months ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• kbinani / win
  WinAPI wrapper (and wrapper generator) for Go
  ☆62Updated 8 years ago
• gentlemanautomaton / volmgmt
  Windows Volume Management libraries for the Go language
  ☆27Updated 4 months ago