Alternatives and similar repositories for ja4

Users that are interested in ja4 are comparing it to the libraries listed below

• salesforce / ja3
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆3,061Updated 9 months ago
• salesforce / jarm
  ☆1,279Updated 2 years ago
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆401Updated 2 months ago
• VirusTotal / yara-x
  A rewrite of YARA in Rust.
  ☆1,025Updated this week
• fooinha / nginx-ssl-ja3
  nginx module for SSL/TLS ja3 fingerprint.
  ☆221Updated 10 months ago
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆2,215Updated this week
• wi1dcard / fingerproxy
  Fingerproxy is an HTTPS reverse proxy. It creates JA3, JA4, Akamai HTTP2 fingerprints, and forwards to backend via HTTP request headers.
  ☆294Updated 8 months ago
• pagpeter / TrackMe
  tls.peet.ws / tls3.peet.ws (http3)
  ☆381Updated 2 weeks ago
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆2,062Updated 2 weeks ago
• FoxIO-LLC / ja4-nginx-module
  Nginx module that calcuates fingerprints from the JA4+ suite
  ☆98Updated last week
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆398Updated last year
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆204Updated last month
• 0x4D31 / galah
  Galah: An LLM-powered web honeypot.
  ☆633Updated 6 months ago
• cloudflare / mitmengine
  A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:
  ☆814Updated last year
• abrahamjuliot / creepjs
  Creepy device and browser fingerprinting
  ☆2,221Updated 2 months ago
• Danny-Dasilva / CycleTLS
  Spoof TLS/JA3 fingerprints in GO and Javascript
  ☆1,277Updated 2 weeks ago
• kunai-project / kunai
  Threat-hunting tool for Linux
  ☆1,033Updated last week
• MISP / misp-warninglists
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆603Updated 3 weeks ago
• fingerprintjs / BotD
  Free bot detection library that runs in the browser. Detects automation tools and frameworks. No server required, runs 100% on the client…
  ☆1,367Updated 2 weeks ago
• phuslu / nginx-ssl-fingerprint
  High performance ja3 and http2 fingerprint for nginx.
  ☆204Updated last month
• ben-sb / javascript-deobfuscator
  General purpose JavaScript deobfuscator
  ☆1,089Updated 6 months ago
• nitefood / asn
  ASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation / IP geolocation / IP fingerprinting / Ne…
  ☆1,819Updated 4 months ago
• femueller / cloud-ip-ranges
  An up-to-date export of cloud provider IP address ranges
  ☆356Updated 6 months ago
• X4BNet / lists_vpn
  Lists of VPN providers (automatically updated)
  ☆762Updated this week
• 0x4D31 / finch
  Fingerprint-aware TLS reverse proxy. Use Finch to outsmart bad traffic—collect client fingerprints (JA3, JA4 +QUIC, JA4H, HTTP/2) and act…
  ☆283Updated 2 months ago
• gospider007 / fp
  🚀obtain the client's ja3 fingerprint, http2 fingerprint, and ja4 fingerprint
  ☆110Updated last month
• mandiant / GoReSym
  Go symbol recovery tool
  ☆898Updated 3 weeks ago
• FoxIO-LLC / ja4tscan
  JA4TScan is an active TCP server fingerprinting tool.
  ☆103Updated last year
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆496Updated 2 weeks ago
• HumanSecurity / restringer
  A Javascript Deobfuscator
  ☆536Updated 2 months ago