Alternatives and similar repositories for gomft:

Users that are interested in gomft are comparing it to the libraries listed below

• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆65Updated last month
• Velocidex / oleparse
  Golang parser for OLE files
  ☆31Updated 6 months ago
• bi-zone / etw
  Go library for ETW (Event Tracing for Windows) events processing
  ☆61Updated 2 years ago
• Velocidex / go-ese
  Go implementation of an Extensible Storage Engine parser
  ☆28Updated 4 months ago
• parsiya / golnk
  Golang package for parsing Windows shell link binary (lnk or Windows shortcut) files.
  ☆37Updated 2 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆42Updated 3 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 2 weeks ago
• a-palchikov / wmi
  tiny wrapper around Windows Management Instrumentation API
  ☆13Updated 6 years ago
• zaneGittins / go-inject
  Process injection techniques written in Go.
  ☆63Updated last year
• hillu / go-ntdll
  Go interface to NTDLL functions
  ☆73Updated 9 months ago
• gentlemanautomaton / volmgmt
  Windows Volume Management libraries for the Go language
  ☆26Updated last year
• nirhaas / gopacker
  UPX-like packer written in Go
  ☆68Updated 3 years ago
• 0xrawsec / gene
  Signature engine for all your logs
  ☆165Updated last year
• ShellCode33 / VM-Detection
  Linux and Windows VMs evasion fully written in Go
  ☆31Updated 2 months ago
• capnspacehook / taskmaster
  Windows Task Scheduler Library for Go
  ☆144Updated this week
• hallazzang / syso
  tool for embedding various type of resources in go Windows executable
  ☆42Updated 5 years ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆104Updated 10 months ago
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆101Updated this week
• oiweiwei / go-msrpc
  The DCE/RPC / MS-RPC Codegen/Client for Go
  ☆68Updated this week
• neox41 / go-procinject
  Process Injection Techniques with Golang
  ☆76Updated 4 years ago
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆120Updated 9 months ago
• lsegal / cppgo
  Call virtual methods on C++ classes from Go without cgo.
  ☆82Updated 11 months ago
• 0xrawsec / golang-etw
  ☆35Updated 2 years ago
• tHinqa / outside-windows
  Win32 API definitions for the Go language
  ☆32Updated 11 years ago
• NTFSparse / ntfs_parse
  NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl
  ☆37Updated 8 years ago
• Binject / shellcode
  Shellcode library as a Go package
  ☆69Updated 5 years ago
• NaniteFactory / gominhook
  MinHook binding for Go (Golang) with support for Windows API.
  ☆79Updated 5 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆59Updated 2 years ago
• castaneai / hinako
  x86 WinAPI hook written in pure Go
  ☆49Updated 4 years ago
• gotopkg / mslnk
  Create Microsoft .LNK files with Go
  ☆15Updated 4 years ago