Alternatives and similar repositories for ja4

Users that are interested in ja4 are comparing it to the libraries listed below

• salesforce / ja3
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆2,941Updated last month
• salesforce / jarm
  ☆1,236Updated last year
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆358Updated last year
• fooinha / nginx-ssl-ja3
  nginx module for SSL/TLS ja3 fingerprint.
  ☆206Updated 2 months ago
• VirusTotal / yara-x
  A rewrite of YARA in Rust.
  ☆769Updated this week
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆390Updated last year
• wi1dcard / fingerproxy
  Fingerproxy is an HTTPS reverse proxy. It creates JA3, JA4, Akamai HTTP2 fingerprints, and forwards to backend via HTTP request headers.
  ☆199Updated last week
• pagpeter / TrackMe
  ☆294Updated 3 months ago
• cloudflare / mitmengine
  A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:
  ☆810Updated last year
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆388Updated 4 years ago
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆177Updated 3 weeks ago
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆1,882Updated this week
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆1,918Updated 2 weeks ago
• mandiant / GoReSym
  Go symbol recovery tool
  ☆747Updated 3 months ago
• mozillazg / ptcpdump
  Process-aware, eBPF-based tcpdump
  ☆1,011Updated 2 weeks ago
• goretk / redress
  Redress - A tool for analyzing stripped Go binaries
  ☆1,069Updated this week
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆1,894Updated 2 weeks ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆457Updated this week
• microsoft / avml
  AVML - Acquire Volatile Memory for Linux
  ☆952Updated this week
• 0x4D31 / galah
  Galah: An LLM-powered web honeypot.
  ☆545Updated 2 weeks ago
• Danny-Dasilva / CycleTLS
  Spoof TLS/JA3 fingerprints in GO and Javascript
  ☆1,070Updated 3 months ago
• sleeyax / burp-awesome-tls
  Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.
  ☆1,442Updated 2 weeks ago
• aquasecurity / traceeshark
  Deep Linux runtime visibility meets Wireshark
  ☆291Updated 3 weeks ago
• gospider007 / fp
  🚀obtain the client's ja3 fingerprint, http2 fingerprint, and ja4 fingerprint
  ☆95Updated last month
• kunai-project / kunai
  Threat-hunting tool for Linux
  ☆887Updated last week
• phuslu / nginx-ssl-fingerprint
  High performance ja3 and http2 fingerprint for nginx.
  ☆174Updated 2 weeks ago
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆298Updated 2 weeks ago
• PeterDaveHello / top-1m-domains
  🌐 List of free and downloadable top 1M domain list (alexa alternatives) 📊
  ☆194Updated 10 months ago
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆819Updated last month
• CaliDog / certstream-python
  Python library for connecting to CertStream
  ☆446Updated 10 months ago