Alternatives and similar repositories for mstscdump

Users that are interested in mstscdump are comparing it to the libraries listed below

• Scorbutics / InjectItx64
  Basic Injector running on x64 machines that is able to load into x64 AND x86 processes
  ☆21Updated 5 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago
• lowleveldesign / lldext
  My commands and scripts extending WinDbg
  ☆34Updated last month
• guidoreina / http_inspect
  HTTP/HTTPS/DNS inspector (windows driver)
  ☆26Updated 6 years ago
• pstolarz / scriptext
  WinDbg scripting language utilities.
  ☆11Updated 4 years ago
• zodiacon / AccessMask
  ☆20Updated 5 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• Biswa96 / TraceEvent
  Trace events in real time sessions
  ☆45Updated last year
• JKornev / NTlib
  Static library and headers for linking your software with ntdll.dll
  ☆32Updated 5 years ago
• n3k / misc_exploits_pocs
  Miscellaneous old Exploit code and PoCs
  ☆16Updated 7 months ago
• BrunoMCBraga / Kernel-Whisperer
  ☆28Updated 4 years ago
• yardenshafir / CallbackObjectAnalyzer
  Dumps information about all the callback objects found in a dump file and the functions registered for them
  ☆35Updated 4 years ago
• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 7 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆48Updated 2 months ago
• h4xu3lyn / NTLib
  Headers for linking your software with ntdll.dll
  ☆15Updated 4 years ago
• deroko / activationcontexthook
  ☆33Updated 7 years ago
• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆20Updated last year
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• therealdreg / auxlib
  Full reversing of the Microsoft Auxiliary Windows API Library and ported to C
  ☆24Updated 5 months ago
• zodiacon / KernelObjectView
  View handles and object for each object type
  ☆64Updated 5 years ago
• zodiacon / ObjectBrowser
  An alternative tool to Sysinternals WinObj tool (nicer icons!)
  ☆36Updated 6 years ago
• prash-wghats / Dtrace-ETW
  DTrace for Windows in userspace; Frontend to ETW
  ☆27Updated 2 years ago
• AndreyBazhan / DbgPkg
  Scripts to prepare Windows system for debugging.
  ☆30Updated 4 years ago
• nccgroup / WindowsJobLock
  Windows Process Lockdown Tool using Job Objects
  ☆69Updated 11 years ago
• russellklenk / ETW
  Event Tracing for Windows Custom Events
  ☆21Updated 10 years ago
• Chuyu-Team / woflib
  An open source library for operating the Windows Overlay Filter driver.
  ☆22Updated 6 years ago
• panoramixor / GDIObjDump
  ☆28Updated 9 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 7 months ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆52Updated last year
• zodiacon / ndcoslo2019
  NDC Oslo 2019 slides and demos
  ☆32Updated 4 years ago