Finding CryptoApi Leaks

Is there any utility one could you use to check if your code leaks
any CryptoAPI objects? I'm specifically concerned about
certificate contexts, certificate stores, chain engines, providers,
messages, hashes .

I've tried the checked build of crypt32.dll but it doesn't seem to
give much useful information (however, I have no idea which
environment variable to set)

Short of solid wrappers and extensive stress testing I fail to
see a good & cheap test. Any suggestions?