Alternatives and similar repositories for ja3

Users that are interested in ja3 are comparing it to the libraries listed below

• FoxIO-LLC / ja4
  JA4+ is a suite of network fingerprinting standards
  ☆1,539Updated last week
• salesforce / jarm
  ☆1,261Updated 2 years ago
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆392Updated 4 years ago
• cloudflare / mitmengine
  A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:
  ☆811Updated last year
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆1,968Updated 2 weeks ago
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆2,044Updated 2 months ago
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆380Updated last year
• p0f / p0f
  p0f unofficial git repo
  ☆498Updated 6 years ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆540Updated 5 months ago
• droe / sslsplit
  Transparent SSL/TLS interception
  ☆1,826Updated last year
• CaliDog / certstream-python
  Python library for connecting to CertStream
  ☆460Updated last year
• buffer / thug
  Python low-interaction honeyclient
  ☆1,021Updated this week
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆391Updated last year
• MISP / misp-warninglists
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆587Updated 3 weeks ago
• honeytrap / honeytrap
  Advanced Honeypot framework.
  ☆1,274Updated 2 years ago
• Neo23x0 / signature-base
  YARA signature and IOC database for my scanners and tools
  ☆2,758Updated last week
• cisagov / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆2,241Updated this week
• VirusTotal / yara-python
  The Python interface for YARA
  ☆710Updated 4 months ago
• cisco / joy
  A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
  ☆1,346Updated last year
• gamelinux / passivedns
  A network sniffer that logs all DNS server replies for use in a passive DNS setup
  ☆1,724Updated last year
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆185Updated 5 months ago
• Yara-Rules / rules
  Repository of yara rules
  ☆4,546Updated last year
• Danny-Dasilva / CycleTLS
  Spoof TLS/JA3 fingerprints in GO and Javascript
  ☆1,185Updated last week
• iagox86 / dnscat2
  ☆3,715Updated last year
• zmap / zmap
  ZMap is a fast single packet network scanner designed for Internet-wide network surveys.
  ☆5,941Updated this week
• mandiant / red_team_tool_countermeasures
  ☆2,664Updated last year
• christophetd / CloudFlair
  🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
  ☆2,913Updated 5 months ago
• mandatoryprogrammer / CursedChrome
  Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victi…
  ☆1,652Updated 11 months ago
• brimdata / zui
  Zui is a powerful desktop application for exploring and working with data. The official front-end to the Zed lake.
  ☆1,893Updated 2 weeks ago
• activecm / rita-legacy
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆2,511Updated last year