0x4D31 / finchLinks
Fingerprint-aware TLS reverse proxy. Use Finch to outsmart bad traffic—collect client fingerprints (JA3, JA4 +QUIC, JA4H, HTTP/2) and act on them: block, reroute, tarpit, or deceive in real time.
☆246Updated last week
Alternatives and similar repositories for finch
Users that are interested in finch are comparing it to the libraries listed below
Sorting:
- Tail Certificate Transparency logs and extract hostnames☆124Updated 4 months ago
- JA4TScan is an active TCP server fingerprinting tool.☆94Updated last year
- Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.☆132Updated 6 months ago
- CRADLE is a collaborative platform for Cyber Threat Intelligence analysts. It streamlines threat investigations with integrated note-taki…☆252Updated this week
- Putting a leash on naughty AWS permissions☆132Updated 2 months ago
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆42Updated 3 months ago
- Post-Quantum Cryptography Scanner - Scan SSH/TLS servers for PQC support☆92Updated last week
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆184Updated 9 months ago
- Modular web-application honeypot platform built using go and gin☆60Updated last year
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆82Updated 2 months ago
- Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…☆40Updated 2 years ago
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated last year
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆97Updated 3 months ago
- An index of publicly available and open-source threat detection rulesets.☆129Updated 6 months ago
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆104Updated 5 months ago
- Create honeypots for cloud environments☆103Updated last month
- HASH (HTTP Agnostic Software Honeypot)☆140Updated last year
- Protection against HTML smuggling attacks.☆99Updated 4 months ago
- Hijack a slack bot to phish your way in☆57Updated 3 months ago
- Assortment of scripts and tools for our Blackhat EU 2024 talk☆100Updated 9 months ago
- gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…☆79Updated 5 months ago
- Examine Chrome extensions for security issues☆86Updated 3 months ago
- A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…☆94Updated last month
- Framework for Monitoring File Ingestion Source for Yara Matches☆50Updated 8 months ago
- FT3: Fraud Tools, Tactics, and Techniques Framework☆92Updated 3 months ago
- AuditKit - Multi-Cloud Compliance Scanner & Evidence Collection☆225Updated last week
- 🛡️ VIPER: Stay ahead of threats with AI-driven vulnerability intelligence. Prioritize CVEs effectively using NVD, EPSS, CISA KEV, and Go…☆79Updated 3 months ago
- Canary Detection☆188Updated 3 weeks ago
- SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System☆161Updated 5 months ago
- ☆132Updated 3 months ago