Alternatives and similar repositories for ja3

Users that are interested in ja3 are comparing it to the libraries listed below

• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆200Updated 2 weeks ago
• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆81Updated 6 years ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Updated 2 years ago
• FoxIO-LLC / ja4tscan
  JA4TScan is an active TCP server fingerprinting tool.
  ☆101Updated last year
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆173Updated last month
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆188Updated this week
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆70Updated 5 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆77Updated this week
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated 2 weeks ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆95Updated 4 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆96Updated this week
• Rafiot / pdfid
  Clone of PDFiD by Didier Stevens, as a package and with some improvements.
  ☆51Updated 9 years ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 9 months ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆161Updated 9 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆96Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆33Updated 2 months ago
• EmergingThreats / threatresearch
  Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation
  ☆81Updated 4 months ago
• CERT-Polska / hfinger
  Hfinger - fingerprinting HTTP requests
  ☆141Updated 2 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆91Updated 9 months ago
• fatemabw / kyd
  DHCP Fingerprinting
  ☆31Updated 5 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆92Updated 8 months ago
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆29Updated 3 months ago
• CybercentreCanada / assemblyline-service-cuckoo
  Assemblyline 4 Malware detonation service (Cuckoo)
  ☆17Updated last year
• segofensiva / OSfooler-ng
  OSfooler-ng prevents remote active/passive OS fingerprinting by tools like nmap or p0f
  ☆215Updated 2 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 3 years ago
• adulau / ssldump
  ssldump - (de-facto repository gathering patches around the cyberspace)
  ☆254Updated 2 weeks ago
• stanford-esrg / gps
  GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.
  ☆77Updated 2 years ago
• FlUxIuS / p0f3plus
  A native and unofficial implementation of p0f3 in Python with extra analysis features: It's p0f3+!
  ☆26Updated 3 years ago
• cisagov / findcdn
  findCDN is a tool created to help accurately identify what CDN a domain is using.
  ☆121Updated 2 weeks ago