Alternatives and similar repositories for ja3

Users that are interested in ja3 are comparing it to the libraries listed below

• FoxIO-LLC / ja4
  JA4+ is a suite of network fingerprinting standards
  ☆1,749Updated this week
• salesforce / jarm
  ☆1,279Updated 2 years ago
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆396Updated 5 years ago
• cloudflare / mitmengine
  A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:
  ☆814Updated last year
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆2,062Updated 3 weeks ago
• p0f / p0f
  p0f unofficial git repo
  ☆510Updated 6 years ago
• activecm / rita-legacy
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆2,515Updated 3 weeks ago
• cisagov / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆2,334Updated last week
• gamelinux / passivedns
  A network sniffer that logs all DNS server replies for use in a passive DNS setup
  ☆1,734Updated last year
• iagox86 / dnscat2
  ☆3,826Updated last year
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆545Updated 9 months ago
• VirusTotal / yara-python
  The Python interface for YARA
  ☆729Updated 8 months ago
• brimdata / zui
  Zui is a powerful desktop application for exploring and working with data. The official front-end to the Zed lake.
  ☆1,923Updated last week
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆2,215Updated last week
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆401Updated 2 months ago
• buffer / thug
  Python low-interaction honeyclient
  ☆1,021Updated 3 weeks ago
• Yara-Rules / rules
  Repository of yara rules
  ☆4,697Updated last year
• CaliDog / certstream-python
  Python library for connecting to CertStream
  ☆470Updated last year
• honeytrap / honeytrap
  Advanced Honeypot framework.
  ☆1,301Updated 2 years ago
• ivre / ivre
  Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…
  ☆3,935Updated 2 weeks ago
• Neo23x0 / signature-base
  YARA signature and IOC database for my scanners and tools
  ☆2,864Updated this week
• mandiant / flare-fakenet-ng
  FakeNet-NG - Next Generation Dynamic Network Analysis Tool
  ☆2,071Updated 2 months ago
• baderj / domain_generation_algorithms
  Some results of my DGA reversing efforts
  ☆688Updated 4 months ago
• zmap / zdns
  Fast DNS Lookup Library and CLI Tool
  ☆1,089Updated 2 weeks ago
• TheHive-Project / TheHive
  TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
  ☆3,880Updated 6 months ago
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆679Updated 2 years ago
• Neo23x0 / Loki
  Loki - Simple IOC and YARA Scanner
  ☆3,715Updated 3 weeks ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆496Updated 2 weeks ago
• yeti-platform / yeti
  Your Everyday Threat Intelligence
  ☆1,949Updated 2 weeks ago
• mandiant / red_team_tool_countermeasures
  ☆2,665Updated last year