Alternatives and similar repositories for OS-Fingerprinting

Users that are interested in OS-Fingerprinting are comparing it to the libraries listed below

• CapacitorSet / ja3-server
  A proof of concept of JA3 tracking.
  ☆27Updated 6 years ago
• dudeintheshell / blackhole
  ☆36Updated 9 years ago
• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆79Updated 5 years ago
• Mengmengada / ThingPot
  ☆12Updated 7 years ago
• upa / ofpot
  OpenFlow Honeypot
  ☆23Updated 12 years ago
• hatching / httpreplay
  Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.
  ☆95Updated 3 years ago
• magisterquis / sshbf
  Simple SSH brute-forcer written in Go
  ☆21Updated 8 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆27Updated 7 years ago
• Z-0ne / SCADA-Rules
  Snort rules
  ☆35Updated 6 years ago
• vulnersCom / detect-rules
  Vulners signature-base software version detection rules
  ☆37Updated 3 years ago
• malice-plugins / fileinfo
  Malice File Info Plugin (libmagic, exiftool, TRiD and ssdeep)
  ☆30Updated last year
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• michael-yip / APTMalwareNotes
  A repository of open source reports on different malware families used in targeted cyber intrusions ("APT").
  ☆51Updated 9 years ago
• EmergingThreats / fiddler2pcap
  fiddler output to pcap
  ☆40Updated 11 years ago
• mwalkowski / anyrun
  app.any.run malware submissions client
  ☆16Updated 5 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆43Updated 7 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• jasonish / suricata-trafficid.ARCHIVED
  Application and service identification rules for Suricata
  ☆29Updated 2 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆103Updated 2 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• 0x71 / cuckoo-linux
  Linux malware analysis based on Cuckoo Sandbox.
  ☆40Updated 2 years ago
• 0x4D31 / Presentations
  Some of the presentations given by me
  ☆18Updated 6 months ago
• rsabir / bro-dsniff
  A dsniff project using bro
  ☆10Updated 9 years ago
• hanj4096 / wukong
  A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x
  ☆43Updated 9 years ago
• Cymmetria / StrutsHoneypot
  Struts Apache 2 based honeypot as well as a detection module for Apache 2 servers
  ☆71Updated 8 years ago
• 0x4D31 / quick
  QUICk - a go library based on gopacket for analyzing QUIC CHLO messages
  ☆22Updated 4 years ago
• wallarm / libdetection
  Signature-free approach library to detect injection and commanding attacks
  ☆89Updated 3 years ago
• stratosphereips / StratosphereLibSlips
  This is the C version of the StratosphereLinuxIPS. It is mainly used for integration with Snort and other IDSs.
  ☆12Updated 8 years ago
• nytr0gen / go-cidr
  CIDR to IP List Tool
  ☆14Updated 9 years ago