Alternatives and similar repositories for ja3

Users that are interested in ja3 are comparing it to the libraries listed below

• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆80Updated 5 years ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆79Updated 2 years ago
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆185Updated 5 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆79Updated 3 months ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆32Updated 3 weeks ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆95Updated 2 weeks ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆95Updated 3 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆75Updated 2 weeks ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆88Updated 5 months ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 6 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆94Updated last year
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆169Updated this week
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆114Updated this week
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 6 months ago
• CERT-Polska / hfinger
  Hfinger - fingerprinting HTTP requests
  ☆139Updated 2 years ago
• fatemabw / kyd
  DHCP Fingerprinting
  ☆29Updated 4 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆88Updated 6 months ago
• StopDDoS / packet-captures
  packet captures of real-world ddos attacks
  ☆166Updated 3 months ago
• Rafiot / pdfid
  Clone of PDFiD by Didier Stevens, as a package and with some improvements.
  ☆44Updated 9 years ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆183Updated 5 months ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Updated 2 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• stanford-esrg / gps
  GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.
  ☆74Updated 2 years ago
• imp0rtp3 / js-yara-rules
  Yara rules for malicious javascript files from public repositories or written by me.
  ☆13Updated 3 years ago
• fox-it / OpenSSH-Network-Parser
  Project to decrypt and parse SSH traffic
  ☆66Updated 4 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆56Updated 2 weeks ago
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆143Updated 2 weeks ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆37Updated 3 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago