Alternatives and similar repositories for ja4tscan

Users that are interested in ja4tscan are comparing it to the libraries listed below

• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆83Updated last year
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated last year
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆26Updated 10 months ago
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆64Updated last month
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆37Updated last year
• eric-conrad / c2-talk
  ☆37Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• Squiblydoo / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆19Updated 2 years ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated 2 years ago
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆106Updated 2 months ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 9 months ago
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated last year
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆84Updated last year
• Censys-Research / censeye
  ☆143Updated 3 weeks ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 2 years ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 2 years ago
• kunai-project / sandbox
  Sandbox samples and monitor them with kunai
  ☆25Updated last week
• EfstratiosLontzetidis / pythia
  Pythia is a versatile query format designed to facilitate the discovery of malicious infrastructure by seamlessly converting into the syn…
  ☆33Updated 10 months ago
• RustyNoob-619 / 100-Days-of-YARA-2024
  ☆19Updated last year
• RustyNoob-619 / YARA
  Everything related to YARA
  ☆11Updated 2 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆122Updated last month
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆42Updated this week
• elastic / labs-releases
  Elastic Security Labs releases
  ☆68Updated last week
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆49Updated 5 months ago
• MythicAgents / freyja
  Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.
  ☆58Updated 7 months ago
• g4l4drim / ChromeDump
  ☆55Updated 8 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆124Updated 5 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 6 months ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆154Updated last year