Alternatives and similar repositories for ntfsdump:

Users that are interested in ntfsdump are comparing it to the libraries listed below

• zodiacon / Blog
  Blog posts
  ☆30Updated 4 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆47Updated 2 months ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• zodiacon / NativeApps
  Demos and presentation from SECArmy Village Grayhat 2020
  ☆38Updated 2 years ago
• Biswa96 / TraceEvent
  Trace events in real time sessions
  ☆45Updated last year
• msmania / procjack
  Not Another Code Injection Toolkit
  ☆16Updated 3 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 6 months ago
• avast / authenticode-parser
  Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.
  ☆17Updated last year
• n4r1b / WdFilter-Research
  Data and structures regarding the research done on WdFilter
  ☆12Updated 5 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆35Updated 4 years ago
• hasherezade / paramkit
  A small library helping to parse commandline parameters (for C/C++)
  ☆57Updated last year
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆35Updated 8 years ago
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• aaaddress1 / wow64Jit
  Call 32bit NtDLL API directly from WoW64 Layer
  ☆60Updated 4 years ago
• mobdk / CloneProcess
  Clone running process with ZwCreateProcess
  ☆57Updated 4 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆39Updated 3 years ago
• trailofbits / WinDbg-JS
  ☆23Updated last year
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• zodiacon / ProcExpX
  ☆65Updated 3 years ago
• VergiliusProject / kernels-data
  Windows kernel PDB data parsed into YAML
  ☆36Updated 5 months ago
• ch3rn0byl / WinDbg-Extensions
  ☆18Updated 4 years ago
• zodiacon / DeviceExplorer
  ☆46Updated 4 months ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• secana / CertDump
  Dump certificates from PE files in different formats
  ☆38Updated last year
• nogginware / mstscdump
  MSTSC Packet Dump Utility
  ☆29Updated 3 years ago
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆32Updated 3 years ago
• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆20Updated last year
• mr-tz / idapython
  IDAPython scripts
  ☆15Updated 7 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆32Updated 10 months ago