zk7 / hershelplus
An improved algorithm for large scale OS fingerprinting
☆17Updated 6 years ago
Alternatives and similar repositories for hershelplus:
Users that are interested in hershelplus are comparing it to the libraries listed below
- ZMapv6: Internet Scanner with IPv6 capabilities☆109Updated last month
- GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.☆67Updated 2 years ago
- LZR quickly detects and fingerprints unexpected services running on unexpected ports.☆171Updated last month
- A library and command line tool for extracting indicators of compromise (IOCs) from security reports in PDF, HTML, Word, or text format☆31Updated 2 weeks ago
- The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…☆17Updated 2 years ago
- goscanner is a tool for large-scale TLS and SSH scans☆31Updated 10 months ago
- Zeek scripts that provide an alternative log file logging TLS/SSL traffic☆10Updated 3 years ago
- pyJARM is a library for doing JARM fingerprinting using python☆49Updated last week
- This tool was open sourced as part of JARM Randomizer: Evading JARM Fingerprinting for HiTB Amsterdam 2021.☆47Updated last year
- IPv6 Internet Wide Scanning☆16Updated this week
- A native and unofficial implementation of p0f3 in Python with extra analysis features: It's p0f3+!☆25Updated 2 years ago
- ssdeep for python on windows☆16Updated 7 years ago
- Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics.☆16Updated 2 weeks ago
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated 2 months ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆76Updated last year
- Operating system remote fingerprinting attack and detection tools☆55Updated 11 years ago
- Generic and transparent TLS inspection for local programs☆21Updated 5 months ago
- Interactive, dynamic, and realistic LLM honeypots☆38Updated last month
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆32Updated 6 months ago
- Provides a multi-platform Graphical User Interface for hashlookup☆12Updated 8 months ago
- ☆24Updated last year
- Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"☆17Updated last month
- This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.☆41Updated 8 months ago
- Python rewrite of passive OS fingerprinting tool☆170Updated 8 months ago
- Tools for analyzing Windows containers and break container's isolation☆29Updated 2 years ago
- High fidelity JA3 & JA3S combinations for known botnets and alike☆11Updated 6 years ago
- A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm☆58Updated last year
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆87Updated 11 months ago
- HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.☆75Updated last year
- Passive Security Tools Fingerprinting Framework☆72Updated 4 years ago