Alternatives and similar repositories for ja3prints

Users that are interested in ja3prints are comparing it to the libraries listed below

• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Updated 2 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆89Updated 9 months ago
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆197Updated last week
• fullylegit / ja3
  A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm
  ☆60Updated 2 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆96Updated 3 weeks ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 9 months ago
• CERT-Polska / hfinger
  Hfinger - fingerprinting HTTP requests
  ☆140Updated 2 years ago
• alphasoc / nfr
  A lightweight tool to score network traffic and flag anomalies
  ☆123Updated last year
• zmap / zannotate
  Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)
  ☆107Updated 2 weeks ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆103Updated 3 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆95Updated 4 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆77Updated 3 weeks ago
• segofensiva / OSfooler-ng
  OSfooler-ng prevents remote active/passive OS fingerprinting by tools like nmap or p0f
  ☆214Updated 2 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• cesarghali / OS-Fingerprinting
  Operating system remote fingerprinting attack and detection tools
  ☆56Updated 12 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆124Updated 5 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆103Updated 5 months ago
• hdm / jarm-go
  A Go implementation of JARM
  ☆120Updated 3 years ago
• Hestat / lw-yara
  Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
  ☆105Updated 4 years ago
• phishdetect / phishdetect
  PhishDetect is a library to help identify phishing pages
  ☆109Updated 2 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆68Updated 2 years ago
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆397Updated 5 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆33Updated last month
• CapacitorSet / ja3-server
  A proof of concept of JA3 tracking.
  ☆29Updated 7 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆108Updated 4 years ago
• imp0rtp3 / js-yara-rules
  Yara rules for malicious javascript files from public repositories or written by me.
  ☆13Updated 4 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago
• PidgeyL / cve-search
  cve-search is a tool to import CVE (Common Vulnerabilities and Exposures) and CPE (Common Platform Enumeration) into a MongoDB to facilit…
  ☆24Updated 8 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆73Updated 5 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆31Updated last year