Alternatives and similar repositories for Vault

Users that are interested in Vault are comparing it to the libraries listed below

• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆20Updated last year
• tandasat / hyperplatform_log_parser
  User-mode program parsing logs created by HyperPlatform
  ☆18Updated 8 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆53Updated last year
• zodiacon / ErrorLookup
  Simple error lookup for Win32 and NTSTATUS errors
  ☆19Updated 6 years ago
• zodiacon / ObjectBrowser
  An alternative tool to Sysinternals WinObj tool (nicer icons!)
  ☆36Updated 6 years ago
• Mattiwatti / dumplib
  Import library generator for x86 PE files
  ☆57Updated 6 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• jschicht / SectorIo
  Kernel mode driver for writing to physical disk with SL_FORCE_DIRECT_WRITE
  ☆24Updated 10 years ago
• therealdreg / auxlib
  Full reversing of the Microsoft Auxiliary Windows API Library and ported to C
  ☆24Updated 7 months ago
• OSRDrivers / windbg-exts
  Various WinDbg extensions and scripts
  ☆32Updated 6 years ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• OSRDrivers / penter
  penter hook example and driver time recorder
  ☆31Updated 7 years ago
• HBelusca / NasuTek-Odyssey
  A Hobbyist Operating System based off the ReactOS/NT Kernel experimenting with OS Development.
  ☆27Updated 12 years ago
• DownWithUp / WhoCalls_C
  WhoCalls can query a directory of files, find the binaries, and search for a user specified Win API import. It and works with both 32-bit…
  ☆17Updated 3 years ago
• zodiacon / DeviceExplorer
  ☆48Updated 2 months ago
• s18leoare / Hackshield-Driver-Bypass
  Bypass HackShield several specific SSDT hook in Ring0
  ☆24Updated 10 years ago
• AndrewGaspar / km-stl
  A drop-in replacement for the C++ STL for kernel mode Windows drivers. The goal is to have implementations for things like the standard a…
  ☆31Updated 9 years ago
• Mattiwatti / WinMain-is-usually-a-function
  Windows NT port of 'Main is usually a function. So then when is it not?'
  ☆25Updated last year
• jpassing / ntrace
  NTrace -- a function boundary tracing tool for Windows user and kernel mode
  ☆22Updated 11 years ago
• zodiacon / StructuredStorage
  C++ wrapper for the Windows structured storage implementation known as Compound Files
  ☆20Updated 4 years ago
• hfiref0x / RpcView
  (This is a fork used primarily to submit patches into upstream repository) RpcView is a free tool to explore and decompile Microsoft RPC …
  ☆19Updated 2 years ago
• h4xu3lyn / NTLib
  Headers for linking your software with ntdll.dll
  ☆15Updated 4 years ago
• gerronjo / openlibs
  Open Source Libraries Collection
  ☆24Updated 9 years ago
• mrfearless / PE-Library-x86
  PE Library x86
  ☆21Updated 5 years ago
• swwwolf / obderef
  Decrement Windows Kernel for fun and profit
  ☆38Updated 7 years ago
• JustasMasiulis / process_handle
  A cross platform, leak free system handle wrapper
  ☆19Updated 7 years ago
• JKornev / DLib-Attacher
  Simple program for static hooking dynamic libraries in executable application
  ☆23Updated 11 years ago
• x64dbg / x64dbg_headless
  Proof of concept headless GUI DLL
  ☆12Updated 3 years ago
• AaLl86 / retroware
  This repository contains some tools that I have written in the past
  ☆28Updated last year
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆33Updated 13 years ago