susMdT/ForsHops external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

susMdT/ForsHops

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/susMdT/ForsHops)

Close

susMdT / ForsHopsView on GitHubMore

• External links
• Readme badge

ForsHops

☆59Mar 25, 2025Updated last year

Alternatives and similar repositories for ForsHops

Users that are interested in ForsHops are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• xforcered / ForsHops

  View on GitHub
  ForsHops
  ☆153Mar 25, 2025Updated last year
• Cracked5pider / Rhaast

  View on GitHub
  doesnt work and wont work on it anymore
  ☆10Jul 8, 2024Updated last year
• passthehashbrowns / Being-A-Good-CLR-Host

  View on GitHub
  ☆97Jan 21, 2025Updated last year
• susMdT / LoudSunRun

  View on GitHub
  Stack Spoofing with Synthetic frames based on the work of namazso, SilentMoonWalk, and VulcanRaven
  ☆267Oct 16, 2024Updated last year
• iilegacyyii / DataInject-BOF

  View on GitHub
  Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll
  ☆150Apr 18, 2025Updated 11 months ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• kleiton0x00 / RtlHijack

  View on GitHub
  Alternative Read and Write primitives using Rtl* functions the unintended way.
  ☆79Aug 25, 2025Updated 7 months ago
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆154Jul 23, 2025Updated 8 months ago
• EricEsquivel / OpsLoader

  View on GitHub
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆46Sep 25, 2024Updated last year
• Ridter / netsync

  View on GitHub
  Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.
  ☆62Feb 25, 2025Updated last year
• 3lp4tr0n / RemoteMonologue

  View on GitHub
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆205Nov 4, 2025Updated 5 months ago
• JanielDary / ImmoralFiber

  View on GitHub
  Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) Phan…
  ☆283Sep 18, 2024Updated last year
• EricEsquivel / Inline-EA

  View on GitHub
  Cobalt Strike BOF for evasive .NET assembly execution
  ☆312Mar 31, 2025Updated last year
• decoder-it / RelabelAbuse

  View on GitHub
  ☆63May 31, 2024Updated last year
• boku7 / StringReaper

  View on GitHub
  Reaping treasures from strings in remote processes memory
  ☆285Feb 8, 2025Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• KingOfTheNOPs / Get-NetNTLM

  View on GitHub
  Internal Monologue BOF
  ☆79Dec 28, 2024Updated last year
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated last year
• zero2504 / Early-Cryo-Bird-Injections

  View on GitHub
  Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
  ☆140Apr 6, 2025Updated last year
• paranoidninja / Proxy-Function-Calls-For-ETwTI

  View on GitHub
  The code is a pingback to the Dark Vortex blog: https://0xdarkvortex.dev/hiding-memory-allocations-from-mdatp-etwti-stack-tracing/
  ☆211Jan 29, 2023Updated 3 years ago
• FalconForceTeam / BOF2shellcode

  View on GitHub
  POC tool to convert CobaltStrike BOF files to raw shellcode
  ☆222Nov 5, 2021Updated 4 years ago
• whokilleddb / ClickForClickOnce

  View on GitHub
  ClickForClickOnce - Generate configurable clickonce payloads
  ☆93Oct 10, 2025Updated 6 months ago
• AlmondOffSec / DCOMRunAs

  View on GitHub
  Lateral movement with DCOM DLL hijacking
  ☆175Jul 4, 2025Updated 9 months ago
• paranoidninja / BRC4-BOF-Artillery

  View on GitHub
  ☆147Nov 6, 2025Updated 5 months ago
• outflanknl / edr-internals

  View on GitHub
  Tools for analyzing EDR agents
  ☆278Jun 10, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Teach2Breach / moonwalk

  View on GitHub
  find dll base addresses without PEB WALK
  ☆162Jul 13, 2025Updated 9 months ago
• draktuls / IAF-EAF-Shellcode-bypass-PoC

  View on GitHub
  Shellcode capable of bypassing EAF / IAF mitigations
  ☆28Apr 11, 2023Updated 3 years ago
• kleiton0x00 / Proxy-DLL-Loads

  View on GitHub
  A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
  ☆413Jan 11, 2026Updated 3 months ago
• Teach2Breach / dll2shell

  View on GitHub
  converts sRDI compatible dlls to shellcode
  ☆35Jan 20, 2025Updated last year
• kozmer / sigdream

  View on GitHub
  sigreturn-oriented(SROP) based sleep obfuscation poc for Linux
  ☆66Dec 15, 2025Updated 3 months ago
• NtDallas / OdinLdr

  View on GitHub
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆191Jan 17, 2026Updated 2 months ago
• dobin / RedEdr

  View on GitHub
  Collect Windows telemetry for Maldev
  ☆467Jan 30, 2026Updated 2 months ago
• G0ldenGunSec / DayBird

  View on GitHub
  Extension functionality for the NightHawk operator client
  ☆26Nov 3, 2023Updated 2 years ago
• safedv / Rustic64

  View on GitHub
  64-bit, position-independent implant template for Windows in Rust.
  ☆180Nov 28, 2025Updated 4 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• decoder-it / KrbRelayEx-RPC

  View on GitHub
  ☆200Mar 28, 2025Updated last year
• fin3ss3g0d / StoneKeeper

  View on GitHub
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆209Dec 25, 2024Updated last year
• p0dalirius / pyDescribeNTSecurityDescriptor

  View on GitHub
  A python tool to parse and describe the contents of a raw ntSecurityDescriptor structure.
  ☆29Aug 18, 2025Updated 7 months ago
• rasta-mouse / SpawnWith

  View on GitHub
  ☆111Feb 17, 2025Updated last year
• Teach2Breach / noldr

  View on GitHub
  Dynamically resolve API function addresses at runtime in a secure manner.
  ☆73Nov 11, 2025Updated 5 months ago
• FalconForceTeam / bof-winrm-client

  View on GitHub
  ☆128Jan 23, 2025Updated last year
• caueb / ThreadlessStompingKann

  View on GitHub
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆78Dec 23, 2023Updated 2 years ago