Alternatives and similar repositories for ja4:

Users that are interested in ja4 are comparing it to the libraries listed below

• salesforce / ja3
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆2,918Updated last year
• salesforce / jarm
  ☆1,218Updated last year
• VirusTotal / yara-x
  A rewrite of YARA in Rust.
  ☆742Updated 2 weeks ago
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆325Updated last year
• fooinha / nginx-ssl-ja3
  nginx module for SSL/TLS ja3 fingerprint.
  ☆205Updated last month
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆386Updated last year
• pagpeter / TrackMe
  ☆281Updated 2 months ago
• cloudflare / mitmengine
  A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:
  ☆808Updated last year
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆1,856Updated this week
• wi1dcard / fingerproxy
  Fingerproxy is an HTTPS reverse proxy. It creates JA3, JA4, Akamai HTTP2 fingerprints, and forwards to backend via HTTP request headers.
  ☆180Updated last month
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆172Updated 9 months ago
• FoxIO-LLC / ja4-nginx-module
  Nginx module that calcuates fingerprints from the JA4+ suite
  ☆62Updated 5 months ago
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆1,863Updated this week
• Danny-Dasilva / CycleTLS
  Spoof TLS/JA3 fingerprints in GO and Javascript
  ☆1,036Updated 2 months ago
• 0x4D31 / galah
  Galah: An LLM-powered web honeypot.
  ☆532Updated this week
• mandiant / GoReSym
  Go symbol recovery tool
  ☆710Updated 2 months ago
• microsoft / avml
  AVML - Acquire Volatile Memory for Linux
  ☆938Updated last week
• elastic / protections-artifacts
  Elastic Security detection content for Endpoint
  ☆1,175Updated last week
• gospider007 / fp
  🚀obtain the client's ja3 fingerprint, http2 fingerprint, and ja4 fingerprint
  ☆90Updated last week
• MISP / misp-warninglists
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆568Updated 3 weeks ago
• drb-ra / C2IntelFeeds
  Automatically created C2 Feeds
  ☆603Updated this week
• phuslu / nginx-ssl-fingerprint
  High performance ja3 and http2 fingerprint for nginx.
  ☆165Updated 2 months ago
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆210Updated this week
• alphasoc / flightsim
  A utility to safely generate malicious network traffic patterns and evaluate controls.
  ☆1,303Updated last year
• VirusTotal / yara-python
  The Python interface for YARA
  ☆688Updated 2 weeks ago
• abrahamjuliot / web-fingerprinting
  web fingerprinting research
  ☆222Updated last year
• projectdiscovery / tlsx
  Fast and configurable TLS grabber focused on TLS based data collection.
  ☆959Updated this week
• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆79Updated 5 years ago
• kunai-project / kunai
  Threat-hunting tool for Linux
  ☆821Updated 2 weeks ago
• Censys-Research / censeye
  ☆137Updated last month