Alternatives and similar repositories for jarm

Users that are interested in jarm are comparing it to the libraries listed below

• salesforce / ja3
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆3,024Updated 6 months ago
• MISP / misp-warninglists
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆594Updated 3 weeks ago
• alphasoc / flightsim
  A utility to safely generate malicious network traffic patterns and evaluate controls.
  ☆1,337Updated last year
• nsacyber / Mitigating-Web-Shells
  Guidance for mitigation web shells. #nsacyber
  ☆982Updated 2 years ago
• Arno0x / DNSExfiltrator
  Data exfiltration over DNS request covert channel
  ☆877Updated last year
• zmap / zgrab2
  Fast Application Layer Scanner
  ☆1,995Updated this week
• FoxIO-LLC / ja4
  JA4+ is a suite of network fingerprinting standards
  ☆1,619Updated this week
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆541Updated 6 months ago
• mattnotmax / cyberchef-recipes
  A list of cyber-chef recipes and curated links
  ☆2,149Updated last year
• 0xrawsec / whids
  Open Source EDR for Windows
  ☆1,280Updated 2 years ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence
  Defences against Cobalt Strike
  ☆1,292Updated 3 years ago
• CaliDog / certstream-python
  Python library for connecting to CertStream
  ☆464Updated last year
• drb-ra / C2IntelFeeds
  Automatically created C2 Feeds
  ☆653Updated this week
• ION28 / BLUESPAWN
  An Active Defense and EDR software to empower Blue Teams
  ☆1,307Updated 2 years ago
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆617Updated last year
• SecurityRiskAdvisors / VECTR
  VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…
  ☆1,531Updated last month
• Neo23x0 / signature-base
  YARA signature and IOC database for my scanners and tools
  ☆2,793Updated 2 weeks ago
• mitre-attack / attack-arsenal
  A collection of red team and adversary emulation resources developed and released by MITRE.
  ☆523Updated 4 years ago
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆674Updated 2 years ago
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆872Updated 2 weeks ago
• target / strelka
  Real-time, container-based file scanning at enterprise scale
  ☆958Updated last month
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆802Updated 2 years ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆884Updated last year
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆504Updated 2 months ago
• activecm / rita-legacy
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆2,509Updated last year
• rabobank-cdc / DeTTECT
  Detect Tactics, Techniques & Combat Threats
  ☆2,225Updated 3 weeks ago
• ahmedkhlief / APT-Hunter
  APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …
  ☆1,392Updated last year
• cisagov / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆2,271Updated 2 weeks ago
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,741Updated last month
• elastic / protections-artifacts
  Elastic Security detection content for Endpoint
  ☆1,327Updated this week