Alternatives and similar repositories for gomft

Users that are interested in gomft are comparing it to the libraries listed below

• Velocidex / go-ntfs
  An NTFS file parser in Go
  ☆70Updated 6 months ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 6 months ago
• nirhaas / gopacker
  UPX-like packer written in Go
  ☆75Updated 3 years ago
• 0xrawsec / golang-win32
  Golang wrappers functions to call Windows APIs
  ☆79Updated 3 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 8 months ago
• bi-zone / etw
  Go library for ETW (Event Tracing for Windows) events processing
  ☆68Updated 3 years ago
• hillu / go-ntdll
  Go interface to NTDLL functions
  ☆78Updated last year
• parsiya / golnk
  Golang package for parsing Windows shell link binary (lnk or Windows shortcut) files.
  ☆37Updated 2 years ago
• a-palchikov / wmi
  tiny wrapper around Windows Management Instrumentation API
  ☆13Updated 6 years ago
• lsegal / cppgo
  Call virtual methods on C++ classes from Go without cgo.
  ☆86Updated last year
• FourCoreLabs / wintoken
  Mainpulate, Steal and Modify Windows Tokens in Go
  ☆74Updated 2 years ago
• awgh / cppgo
  Call virtual methods on C++ classes from Go without cgo.
  ☆27Updated 4 years ago
• saferwall / pe
  A lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis ta…
  ☆369Updated 3 months ago
• tailscale / wf
  Package for controlling the Windows firewall (aka Windows Filtering Platform, WFP)
  ☆108Updated last year
• castaneai / hinako
  x86 WinAPI hook written in pure Go
  ☆50Updated 5 years ago
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆127Updated last year
• NaniteFactory / gominhook
  MinHook binding for Go (Golang) with support for Windows API.
  ☆81Updated 6 years ago
• zaneGittins / go-inject
  Process injection techniques written in Go.
  ☆64Updated 2 years ago
• scalingdata / gowinlog
  Go library for subscribing to Windows Event Log
  ☆30Updated 6 years ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated last year
• ropnop / go-clr
  A PoC package for hosting the CLR and executing .NET from Go
  ☆225Updated 2 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• ShellCode33 / VM-Detection
  Linux and Windows VMs evasion fully written in Go
  ☆37Updated 11 months ago
• kbinani / win
  WinAPI wrapper (and wrapper generator) for Go
  ☆62Updated 8 years ago
• awgh / rawreader
  Implements io.ReaderAt over raw memory.
  ☆13Updated 5 years ago
• emperorcow / go-netscan
  ☆33Updated 5 years ago
• forensicanalysis / fslib
  📚 A collection of tools and libraries to parse filesystems, archives and other data types
  ☆21Updated 11 months ago
• Binject / shellcode
  Shellcode library as a Go package
  ☆70Updated 5 years ago
• 0xrawsec / golang-etw
  ☆41Updated 3 years ago
• gentlemanautomaton / volmgmt
  Windows Volume Management libraries for the Go language
  ☆27Updated 5 months ago