Alternatives and similar repositories for ja4tscan

Users that are interested in ja4tscan are comparing it to the libraries listed below

• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆79Updated 2 years ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆107Updated 10 months ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆30Updated last year
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆40Updated 2 years ago
• closed-systems / strangerstrings
  A little tool to filter the stranger strings from a binary so you can analyze the good ones
  ☆52Updated 4 months ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆151Updated last year
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated last year
• hdm / ctail
  Tail Certificate Transparency logs and extract hostnames
  ☆127Updated 7 months ago
• NHAS / egressinator
  Find what egress ports are allowed
  ☆46Updated 2 months ago
• Sh1n0g1 / z9
  PowerShell Script Analyzer
  ☆70Updated 2 years ago
• moval0x1 / NoDelete
  NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.
  ☆49Updated 2 months ago
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.
  ☆144Updated this week
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• vanhoefm / tunneltester
  ☆76Updated 6 months ago
• 0x4D31 / finch
  Fingerprint-aware TLS reverse proxy. Use Finch to outsmart bad traffic—collect client fingerprints (JA3, JA4 +QUIC, JA4H, HTTP/2) and act…
  ☆283Updated last month
• nikhilh-20 / ELFEN
  ELFEN: Automated Linux Malware Analysis Sandbox
  ☆134Updated 5 months ago
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆93Updated 2 months ago
• kunai-project / sandbox
  Sandbox samples and monitor them with kunai
  ☆29Updated 7 months ago
• fkie-cad / socbed
  A Self-Contained Open-Source Cyberattack Experimentation Testbed
  ☆43Updated 7 months ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆95Updated 7 months ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• g4l4drim / ChromeDump
  ☆55Updated last year
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆78Updated last week
• EmergingThreats / pdf_object_hashing
  ☆81Updated 3 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated last year
• MatheuZSecurity / NullSection
  NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.
  ☆67Updated 2 years ago
• pancak3lullz / SECurityTr8Ker
  SECurityTr8Ker monitors the SEC's RSS feed for 8-K filings with cybersecurity incident disclosures.
  ☆90Updated 7 months ago
• bobby-tablez / TTP-Threat-Feeds
  Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨
  ☆43Updated last week
• yaaras / honeybee
  Create honeypots for cloud environments
  ☆109Updated 3 months ago