Alternatives and similar repositories for gomft

Users that are interested in gomft are comparing it to the libraries listed below

• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆69Updated 2 months ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 2 months ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 5 months ago
• parsiya / golnk
  Golang package for parsing Windows shell link binary (lnk or Windows shortcut) files.
  ☆37Updated 2 years ago
• a-palchikov / wmi
  tiny wrapper around Windows Management Instrumentation API
  ☆13Updated 6 years ago
• forensicanalysis / fslib
  📚 A collection of tools and libraries to parse filesystems, archives and other data types
  ☆20Updated 7 months ago
• hillu / go-ntdll
  Go interface to NTDLL functions
  ☆75Updated last year
• bi-zone / etw
  Go library for ETW (Event Tracing for Windows) events processing
  ☆66Updated 2 years ago
• zaneGittins / go-inject
  Process injection techniques written in Go.
  ☆62Updated last year
• nirhaas / gopacker
  UPX-like packer written in Go
  ☆73Updated 3 years ago
• Velocidex / go-ese
  Go implementation of an Extensible Storage Engine parser
  ☆29Updated 3 months ago
• awgh / cppgo
  Call virtual methods on C++ classes from Go without cgo.
  ☆26Updated 4 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• FourCoreLabs / wintoken
  Mainpulate, Steal and Modify Windows Tokens in Go
  ☆74Updated 2 years ago
• dr-anoroc / rawccopy
  Command line utility for copying files on NTFS using low level disk access
  ☆34Updated last year
• 0xrawsec / golang-win32
  Golang wrappers functions to call Windows APIs
  ☆77Updated 2 years ago
• tHinqa / outside-windows
  Win32 API definitions for the Go language
  ☆32Updated 11 years ago
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆102Updated 4 months ago
• NextronSystems / go-handle
  Iterate over Windows Handles
  ☆14Updated last year
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆125Updated last year
• kirides / screencapture
  This repository has been moved to https://github.com/kirides/go-d3d
  ☆52Updated 2 years ago
• gentlemanautomaton / volmgmt
  Windows Volume Management libraries for the Go language
  ☆27Updated last month
• oiweiwei / go-msrpc
  The DCE/RPC / MS-RPC Codegen/Client for Go
  ☆94Updated last month
• castaneai / hinako
  x86 WinAPI hook written in pure Go
  ☆49Updated 5 years ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆24Updated 7 months ago
• Velocidex / go-prefetch
  A golang implementation of a prefetch parser.
  ☆20Updated last week
• abdullah2993 / go-runpe
  execute a PE in the address space of another PE aka process hollowing
  ☆55Updated 3 years ago
• Binject / forger
  ☆20Updated 6 years ago
• wheelerlaw / go-memory-module
  Go wrapper for in-memory DLL module loader, MemoryModule
  ☆33Updated 7 years ago