0x4D31 / finchLinks
Fingerprint-aware TLS reverse proxy. Use Finch to outsmart bad traffic—collect client fingerprints (JA3, JA4 +QUIC, JA4H, HTTP/2) and act on them: block, reroute, tarpit, or deceive in real time.
☆230Updated last month
Alternatives and similar repositories for finch
Users that are interested in finch are comparing it to the libraries listed below
Sorting:
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆79Updated last month
- Tail Certificate Transparency logs and extract hostnames☆124Updated 3 months ago
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆40Updated last month
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆102Updated 4 months ago
- Putting a leash on naughty AWS permissions☆130Updated last month
- Modular web-application honeypot platform built using go and gin☆60Updated last year
- An archive of 0day.today exploits☆180Updated 2 months ago
- Post-Quantum Cryptography Scanner - Scan SSH/TLS servers for PQC support☆89Updated 2 months ago
- JA4TScan is an active TCP server fingerprinting tool.☆88Updated last year
- An index of publicly available and open-source threat detection rulesets.☆125Updated 5 months ago
- Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.☆129Updated 4 months ago
- Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…☆40Updated 2 years ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆91Updated last month
- CRADLE is a collaborative platform for Cyber Threat Intelligence analysts. It streamlines threat investigations with integrated note-taki…☆251Updated this week
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated last year
- Protection against HTML smuggling attacks.☆99Updated 2 months ago
- Find what egress ports are allowed☆42Updated 2 years ago
- Framework for Monitoring File Ingestion Source for Yara Matches☆50Updated 6 months ago
- HASH (HTTP Agnostic Software Honeypot)☆138Updated last year
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆180Updated 7 months ago
- Hijack a slack bot to phish your way in☆57Updated 2 months ago
- ☆71Updated last month
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆105Updated last year
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆57Updated 8 months ago
- Canary Detection☆187Updated 4 months ago
- Automation tool for Windows Deception Host Burn-In☆86Updated 10 months ago
- ☆35Updated 5 months ago
- An OpenAI API Compatible Honeypot Gateway☆16Updated 6 months ago
- gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…☆79Updated 4 months ago
- ☆97Updated 2 months ago