t9t / gomft

Related projects ⓘ

Alternatives and complementary repositories for gomft

• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆64Updated last week
• hillu / go-ntdll
  Go interface to NTDLL functions
  ☆72Updated 7 months ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆31Updated 5 months ago
• audibleblink / dllexical
  easy dll proxying in go
  ☆13Updated 2 years ago
• bi-zone / etw
  Go library for ETW (Event Tracing for Windows) events processing
  ☆60Updated 2 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated last year
• dr-anoroc / rawccopy
  Command line utility for copying files on NTFS using low level disk access
  ☆32Updated 8 months ago
• 0xrawsec / golang-etw
  ☆36Updated 2 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆42Updated 3 years ago
• Binject / forger
  ☆20Updated 5 years ago
• Velocidex / go-ese
  Go implementation of an Extensible Storage Engine parser
  ☆27Updated 2 months ago
• wheelerlaw / go-memory-module
  Go wrapper for in-memory DLL module loader, MemoryModule
  ☆32Updated 6 years ago
• FourCoreLabs / wintoken
  Mainpulate, Steal and Modify Windows Tokens in Go
  ☆70Updated last year
• Biswa96 / TraceEvent
  Trace events in real time sessions
  ☆43Updated last year
• ShellCode33 / VM-Detection
  Linux and Windows VMs evasion fully written in Go
  ☆29Updated 3 weeks ago
• zaneGittins / go-inject
  Process injection techniques written in Go.
  ☆61Updated last year
• gwillgues / BPFDoor
  BPFDoor Source Code. Originally found from Chinese Threat Actor Red Menshen
  ☆40Updated 2 years ago
• jfjallid / go-smb
  A client library to interact with Windows RPC services such as MS-SRVS and MS-RRP.
  ☆44Updated last month
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆67Updated last year
• redt1de / MaldevEDR
  EDR/AV Simulation for Malware Development
  ☆12Updated last year
• mjwhitta / win
  Windows API/constants, identity, and WinHTTP/WinINet for Go.
  ☆18Updated 4 months ago
• Ne0nd0g / winhttp
  A library to make HTTP requests with the Windows winhttp API
  ☆22Updated 9 months ago
• parsiya / golnk
  Golang package for parsing Windows shell link binary (lnk or Windows shortcut) files.
  ☆36Updated 2 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆40Updated last year
• kirides / screencapture
  This repository has been moved to https://github.com/kirides/go-d3d
  ☆53Updated last year
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆37Updated last year
• magisterquis / bin2memfd
  Loads a program into a memfd and runs it.
  ☆12Updated 2 years ago
• Ne0nd0g / go-coff
  Load and execute a common object file format (COFF) in the current process
  ☆25Updated 8 months ago
• turekt / knockknockgo
  Pure Go rewrite of knockknock
  ☆10Updated last year
• emperorcow / go-netscan
  ☆33Updated 4 years ago