Alternatives and similar repositories for ja4

Users that are interested in ja4 are comparing it to the libraries listed below

• salesforce / ja3
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆2,964Updated 2 months ago
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆368Updated last year
• salesforce / jarm
  ☆1,241Updated 2 years ago
• VirusTotal / yara-x
  A rewrite of YARA in Rust.
  ☆818Updated last week
• fooinha / nginx-ssl-ja3
  nginx module for SSL/TLS ja3 fingerprint.
  ☆210Updated 3 months ago
• 0x4D31 / galah
  Galah: An LLM-powered web honeypot.
  ☆552Updated this week
• pagpeter / TrackMe
  ☆307Updated 5 months ago
• FoxIO-LLC / ja4-nginx-module
  Nginx module that calcuates fingerprints from the JA4+ suite
  ☆69Updated this week
• kunai-project / kunai
  Threat-hunting tool for Linux
  ☆943Updated last month
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆391Updated last year
• wi1dcard / fingerproxy
  Fingerproxy is an HTTPS reverse proxy. It creates JA3, JA4, Akamai HTTP2 fingerprints, and forwards to backend via HTTP request headers.
  ☆221Updated last month
• phuslu / nginx-ssl-fingerprint
  High performance ja3 and http2 fingerprint for nginx.
  ☆182Updated last month
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆1,964Updated last week
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆176Updated 2 months ago
• ben-sb / javascript-deobfuscator
  General purpose JavaScript deobfuscator
  ☆945Updated this week
• PerimeterX / restringer
  A Javascript Deobfuscator
  ☆448Updated 6 months ago
• mandiant / GoReSym
  Go symbol recovery tool
  ☆775Updated last month
• Danny-Dasilva / CycleTLS
  Spoof TLS/JA3 fingerprints in GO and Javascript
  ☆1,104Updated 4 months ago
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆1,917Updated 2 weeks ago
• montysecurity / C2-Tracker
  Live Feed of C2 servers, tools, and botnets
  ☆669Updated this week
• mozillazg / ptcpdump
  Process-aware, eBPF-based tcpdump
  ☆1,050Updated this week
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆1,913Updated 3 weeks ago
• musana / CF-Hero
  CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applicat…
  ☆1,619Updated last month
• relative / synchrony
  javascript-obfuscator cleaner & deobfuscator
  ☆1,039Updated last year
• Aegrah / PANIX
  Customizable Linux Persistence Tool for Security Research and Detection Engineering.
  ☆673Updated 4 months ago
• abrahamjuliot / creepjs
  Creepy device and browser fingerprinting
  ☆1,924Updated 2 months ago
• nitefood / asn
  ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Ne…
  ☆1,535Updated 3 months ago
• goretk / redress
  Redress - A tool for analyzing stripped Go binaries
  ☆1,089Updated this week
• gospider007 / fp
  🚀obtain the client's ja3 fingerprint, http2 fingerprint, and ja4 fingerprint
  ☆99Updated last week
• h3xduck / TripleCross
  A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities.
  ☆1,875Updated last year