Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s
☆37Jan 8, 2020Updated 6 years ago
Alternatives and similar repositories for sensor-d4-tls-fingerprinting
Users that are interested in sensor-d4-tls-fingerprinting are comparing it to the libraries listed below
Sorting:
- A Passive DNS backend and collector☆33Jul 16, 2022Updated 3 years ago
- D4 core software (server and sample sensor client)☆43Dec 23, 2023Updated 2 years ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆20Jan 9, 2026Updated 2 months ago
- Scripts to deploy and update MISP in air-gapped environments☆17Jan 20, 2026Updated last month
- Incident Notification Platform by @NC3-LU☆11Updated this week
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Jun 18, 2021Updated 4 years ago
- pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.☆92Apr 11, 2024Updated last year
- Python framework for collecting and analyzing TLS certificate data via the Certificate Transparency Network☆12May 25, 2025Updated 9 months ago
- Recordization library☆11Feb 27, 2026Updated last week
- ☆12Mar 2, 2026Updated last week
- A list of backdoor samples I find online.☆13Dec 16, 2019Updated 6 years ago
- A privacy-aware exchange module to securely and privately share your indicators☆14Aug 23, 2017Updated 8 years ago
- Package tcpopt implements encoding and decoding of TCP-level socket options☆12Mar 14, 2019Updated 6 years ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Dec 24, 2023Updated 2 years ago
- Bro analyzer that detects Google's QUIC protocol☆10Mar 2, 2021Updated 5 years ago
- ssdeep cluster analysis for malware files☆31Jun 5, 2020Updated 5 years ago
- Examples for https://github.com/insomniacslk/dhcp☆16Mar 24, 2021Updated 4 years ago
- Artifacts of the USENIX Security 2022 paper "Spoki: Unveiling a New Wave of Scanners through a Reactive Network Telescope"☆18Dec 8, 2024Updated last year
- CERTITUDE - A python package to classify malicious URLs☆20May 16, 2022Updated 3 years ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Aug 14, 2025Updated 6 months ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Sep 21, 2025Updated 5 months ago
- A web scraper to create MISP events and reports☆17Jun 30, 2025Updated 8 months ago
- An offensive bash script which tries to find GENERIC privesc vulnerabilities and issues.☆13Oct 17, 2017Updated 8 years ago
- Geppetto - Virtual machine and infrastructure orchestration☆14Feb 13, 2025Updated last year
- Architecture - design and implementation of the D4 project architecture☆16Jul 3, 2025Updated 8 months ago
- Toolset to index the Mastodon federated network.☆13Nov 10, 2022Updated 3 years ago
- ☆15Jul 13, 2023Updated 2 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Feb 26, 2026Updated last week
- Recog-Go: Pattern Recognition using Rapid7 Recog☆119Jan 15, 2026Updated last month
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Jan 10, 2025Updated last year
- nmap/ndiff based scanner with template based notification system in case of infrastructure changes☆19Feb 16, 2018Updated 8 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆41Jan 20, 2023Updated 3 years ago
- Fastgcd is a C implementation of an efficient algorithm to compute the pairwise GCDs of a collection of integers. The algorithm is due to…☆17May 13, 2024Updated last year
- Recursive process fork/exec tracing for Linux systems using ptrace()☆21Oct 6, 2025Updated 5 months ago
- Automatically exported from code.google.com/p/dsniff☆17Jun 14, 2015Updated 10 years ago
- Golang fanotify example☆26Feb 29, 2024Updated 2 years ago
- Random things for my own reference☆22Aug 22, 2022Updated 3 years ago
- Pulled out Linux kernel code to run in userland so they could be targeted by AFL and KLEE☆20Jan 29, 2020Updated 6 years ago
- Similarius is a Python library to compare web page and evaluate the level of similarity.☆23Mar 2, 2026Updated last week