Alternatives and similar repositories for ja4tscan

Users that are interested in ja4tscan are comparing it to the libraries listed below

• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆25Updated 10 months ago
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆64Updated last month
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆83Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated last year
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆106Updated last month
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated last year
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated 11 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆53Updated last month
• eric-conrad / c2-talk
  ☆37Updated last year
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated 2 years ago
• Censys-Research / censeye
  ☆141Updated 3 months ago
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆60Updated last year
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆123Updated 4 months ago
• g4l4drim / ChromeDump
  ☆55Updated 7 months ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆34Updated 3 weeks ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 6 months ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆150Updated 8 months ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated 2 years ago
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆46Updated 2 months ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆69Updated this week
• elastic / labs-releases
  Elastic Security Labs releases
  ☆67Updated 2 weeks ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆39Updated last week
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆55Updated last week
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆29Updated last month
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 2 years ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 8 months ago
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆62Updated 4 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆79Updated 9 months ago