Alternatives and similar repositories for ja4:

Users that are interested in ja4 are comparing it to the libraries listed below

• salesforce / ja3
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆2,869Updated last year
• salesforce / jarm
  ☆1,206Updated last year
• fooinha / nginx-ssl-ja3
  nginx module for SSL/TLS ja3 fingerprint.
  ☆203Updated 5 months ago
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆315Updated last year
• VirusTotal / yara-x
  A rewrite of YARA in Rust.
  ☆716Updated this week
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆383Updated last year
• mandiant / GoReSym
  Go symbol recovery tool
  ☆670Updated last week
• wi1dcard / fingerproxy
  Fingerproxy is an HTTPS reverse proxy. It creates JA3, JA4, Akamai HTTP2 fingerprints, and forwards to backend via HTTP request headers.
  ☆163Updated 2 months ago
• 0x4D31 / galah
  Galah: An LLM-powered web honeypot.
  ☆496Updated 4 months ago
• mozillazg / ptcpdump
  Process-aware, eBPF-based tcpdump
  ☆869Updated this week
• pagpeter / TrackMe
  ☆262Updated 2 weeks ago
• FoxIO-LLC / ja4-nginx-module
  Nginx module that calcuates fingerprints from the JA4+ suite
  ☆48Updated 3 months ago
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆161Updated 7 months ago
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆383Updated 4 years ago
• projectdiscovery / tlsx
  Fast and configurable TLS grabber focused on TLS based data collection.
  ☆895Updated this week
• fkie-cad / friTap
  Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.
  ☆317Updated 2 weeks ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆168Updated 2 weeks ago
• kunai-project / kunai
  Threat-hunting tool for Linux
  ☆773Updated last week
• gospider007 / fp
  🚀obtain the client's ja3 fingerprint, http2 fingerprint, and ja4 fingerprint
  ☆82Updated this week
• p0f / p0f
  p0f unofficial git repo
  ☆485Updated 5 years ago
• MISP / misp-warninglists
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆557Updated 2 weeks ago
• Nisitay / pyp0f
  p0f v3 with impersonation spoofing, written in Python - Accurately guess the OS of a packet with passive fingerprinting.
  ☆56Updated 9 months ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆454Updated 2 months ago
• Gui774ume / ebpfkit
  ebpfkit is a rootkit powered by eBPF
  ☆780Updated 2 years ago
• CybercentreCanada / assemblyline
  AssemblyLine 4: File triage and malware analysis
  ☆285Updated this week
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆1,822Updated this week
• citronneur / pamspy
  Credentials Dumper for Linux using eBPF
  ☆1,132Updated 5 months ago
• Meckazin / ChromeKatz
  Dump cookies and credentials directly from Chrome/Edge process memory
  ☆1,125Updated 3 months ago
• sleeyax / burp-awesome-tls
  Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
  ☆1,323Updated this week
• SigmaHQ / pySigma
  Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
  ☆430Updated this week