Alternatives and similar repositories for ForsHops:

Users that are interested in ForsHops are comparing it to the libraries listed below

• xforcered / Being-A-Good-CLR-Host
  ☆97Updated 2 months ago
• kozmer / aad-bofs
  AzureAD beacon object files
  ☆115Updated 3 months ago
• dmcxblue / PyObscura
  A python script that automates a C2 Profile build
  ☆26Updated this week
• FalconForceTeam / bof-winrm-client
  ☆105Updated 2 months ago
• xforcered / VectoredExceptionHandling
  ☆30Updated 7 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆92Updated 8 months ago
• Octoberfest7 / enumhandles_BOF
  ☆125Updated 6 months ago
• NtDallas / OdinLdr
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆102Updated 2 months ago
• deh00ni / NtDumpBOF
  ☆95Updated 6 months ago
• Retr0-code / hash-dumper
  Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already s…
  ☆60Updated last year
• grayhatkiller / SharpExShell
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆69Updated 10 months ago
• akamai / Mirage
  Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.
  ☆72Updated last month
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆65Updated last month
• silentwarble / PIC-Library
  A collection of position independent coding resources
  ☆68Updated last month
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆80Updated 4 months ago
• racoten / BetterNetLoader
  A version of NetLoader, Execute Assemblies and Bypass ETW and AMSI using Hardware Breakpoints
  ☆81Updated 2 months ago
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆115Updated last year
• decoder-it / RelabelAbuse
  ☆61Updated 10 months ago
• NoahKirchner / speedloader
  Rust template/library for implementing your own COFF loader
  ☆49Updated 2 months ago
• NtDallas / Draugr
  BOF with Synthetic Stackframe
  ☆136Updated last month
• logangoins / Stifle
  .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS
  ☆118Updated last month
• caueb / ThreadlessStompingKann
  Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.
  ☆61Updated last year
• Faran-17 / Hellshazzard
  Indirect Syscall implementation to bypass userland NTAPIs hooking.
  ☆73Updated 7 months ago
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated 8 months ago
• xpn / CloudInject
  ☆109Updated 4 months ago
• itaymigdal / PartyLoader
  Threadless shellcode injection tool
  ☆62Updated 7 months ago
• OtterHacker / AWSRedirector
  ☆54Updated last month
• oldboy21 / JayFinder
  Find DLLs with RWX section
  ☆78Updated last year
• decoder-it / ChgPass
  ☆125Updated last month
• rasta-mouse / SpawnWith
  ☆104Updated last month