Alternatives and similar repositories for ja4

Users that are interested in ja4 are comparing it to the libraries listed below

• salesforce / ja3
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆3,030Updated 7 months ago
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆390Updated 3 weeks ago
• salesforce / jarm
  ☆1,277Updated 2 years ago
• VirusTotal / yara-x
  A rewrite of YARA in Rust.
  ☆940Updated this week
• fooinha / nginx-ssl-ja3
  nginx module for SSL/TLS ja3 fingerprint.
  ☆215Updated 8 months ago
• FoxIO-LLC / ja4-nginx-module
  Nginx module that calcuates fingerprints from the JA4+ suite
  ☆82Updated 2 weeks ago
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆2,131Updated 3 weeks ago
• kunai-project / kunai
  Threat-hunting tool for Linux
  ☆1,024Updated 2 weeks ago
• 0x4D31 / galah
  Galah: An LLM-powered web honeypot.
  ☆620Updated 4 months ago
• wi1dcard / fingerproxy
  Fingerproxy is an HTTPS reverse proxy. It creates JA3, JA4, Akamai HTTP2 fingerprints, and forwards to backend via HTTP request headers.
  ☆286Updated 6 months ago
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆392Updated last year
• pagpeter / TrackMe
  ☆358Updated 2 months ago
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆194Updated 7 months ago
• cloudflare / mitmengine
  A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:
  ☆813Updated last year
• phuslu / nginx-ssl-fingerprint
  High performance ja3 and http2 fingerprint for nginx.
  ☆198Updated last month
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆2,006Updated this week
• mandiant / GoReSym
  Go symbol recovery tool
  ☆862Updated last week
• p0f / p0f
  p0f unofficial git repo
  ☆506Updated 6 years ago
• qpoint-io / qtap
  Qtap: An eBPF agent that captures pre-encrypted network traffic, providing rich context about egress connections and their originating pr…
  ☆1,370Updated this week
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆2,022Updated 5 months ago
• ben-sb / javascript-deobfuscator
  General purpose JavaScript deobfuscator
  ☆1,063Updated 4 months ago
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆397Updated 5 years ago
• gospider007 / fp
  🚀obtain the client's ja3 fingerprint, http2 fingerprint, and ja4 fingerprint
  ☆109Updated 3 weeks ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆187Updated 7 months ago
• d-Rickyy-b / certstream-server-go
  This project aims to be a drop-in replacement for the certstream server by Calidog. This tool aggregates, parses, and streams certificate…
  ☆177Updated 2 weeks ago
• abrahamjuliot / creepjs
  Creepy device and browser fingerprinting
  ☆2,127Updated last week
• zmap / zdns
  Fast DNS Lookup Library and CLI Tool
  ☆1,059Updated last week
• fingerprintjs / BotD
  Bot detection library that runs in the browser. Detects automation tools and frameworks. No server required, runs 100% on the client. MIT…
  ☆1,331Updated 2 weeks ago
• Danny-Dasilva / CycleTLS
  Spoof TLS/JA3 fingerprints in GO and Javascript
  ☆1,226Updated last month
• montysecurity / C2-Tracker
  Live Feed of C2 servers, tools, and botnets
  ☆729Updated last week