Alternatives and similar repositories for ja3

Users that are interested in ja3 are comparing it to the libraries listed below

• FoxIO-LLC / ja4
  JA4+ is a suite of network fingerprinting standards
  ☆1,330Updated last week
• salesforce / jarm
  ☆1,236Updated last year
• cloudflare / mitmengine
  A MITM (monster-in-the-middle) detection tool. Used to build MALCOLM:
  ☆811Updated last year
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆1,889Updated this week
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆388Updated 4 years ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆542Updated last month
• CUCyber / ja3transport
  Impersonating JA3 signatures
  ☆392Updated last year
• darkoperator / dnsrecon
  DNS Enumeration Script
  ☆2,792Updated last week
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆671Updated last year
• mattnotmax / cyberchef-recipes
  A list of cyber-chef recipes and curated links
  ☆2,106Updated last year
• EnableSecurity / wafw00f
  WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
  ☆5,698Updated 5 months ago
• buffer / thug
  Python low-interaction honeyclient
  ☆1,016Updated last week
• fooinha / nginx-ssl-ja3
  nginx module for SSL/TLS ja3 fingerprint.
  ☆207Updated 2 months ago
• ivre / ivre
  Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…
  ☆3,730Updated this week
• refraction-networking / utls
  Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.
  ☆1,931Updated last week
• activecm / rita-legacy
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆2,514Updated 11 months ago
• NikolaiT / zardaxt
  Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.
  ☆363Updated last year
• Ne0nd0g / merlin
  Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
  ☆5,266Updated 2 months ago
• brimdata / zui
  Zui is a powerful desktop application for exploring and working with data. The official front-end to the Zed lake.
  ☆1,849Updated this week
• GoSecure / pyrdp
  RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
  ☆1,695Updated 3 months ago
• blechschmidt / massdns
  A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
  ☆3,362Updated 3 weeks ago
• Neo23x0 / signature-base
  YARA signature and IOC database for my scanners and tools
  ☆2,652Updated 3 weeks ago
• honeytrap / honeytrap
  Advanced Honeypot framework.
  ☆1,261Updated last year
• p0f / p0f
  p0f unofficial git repo
  ☆495Updated 5 years ago
• ptresearch / AttackDetection
  Attack Detection
  ☆1,359Updated 2 years ago
• InQuest / awesome-yara
  A curated list of awesome YARA rules, tools, and people.
  ☆3,840Updated 2 months ago
• VirusTotal / yara
  The pattern matching swiss knife
  ☆8,839Updated 2 weeks ago
• SigmaHQ / sigma
  Main Sigma Rule Repository
  ☆9,296Updated this week
• CaliDog / certstream-python
  Python library for connecting to CertStream
  ☆448Updated 10 months ago
• pagpeter / TrackMe
  ☆300Updated 4 months ago