JA3 Logo

JA3

0
Free
Visit Website

JA3 is a method for creating SSL/TLS client fingerprints that can be easily shared for threat intelligence. It was invented at Salesforce in 2017 but is now maintained by John Althouse at FoxIO-LLC. The project includes JA3 and JA3S scripts for Zeek and Python, with support added to various cybersecurity tools and platforms.

FEATURES

ALTERNATIVES

A Burp Suite extension that formats GraphQL requests for easier reading

Passive Network Audit Framework (PNAF) v0.1.2 provides passive network auditing capabilities and is now a project of COSMIC-Chapter of The Honeynet Project.

A module for loading Bro logs as tables in Osquery

SentryPeer is a fraud detection tool that monitors and detects fraudulent activities on SIP servers, capturing IP addresses and phone numbers of suspicious activities and providing a notification system to service providers.

Visualize and analyze network relationships with AfterGlow

A wireless network detector, sniffer, and intrusion detection system

Arkime is an open-source network capture and analysis tool that provides comprehensive network visibility, facilitating swift identification and resolution of security and network issues.

A tool for extracting common indicators of compromise from a block of text.