Zeek Remote desktop fingerprinting script based on FATT (Fingerprint All The Things). This is a Zeek package used to fingerprint Remote Desktop clients by extracting fields from different data packets to create a unique fingerprint log with details like client version, encryption method, flags, and more.
FEATURES
SIMILAR TOOLS
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
A website scanner that provides a sandbox for the web, allowing users to scan URLs and websites for potential threats and vulnerabilities.
A userland implementation of the Network Block Device protocol that enables remote block device access over network connections for distributed storage and virtualization use cases.
A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.
Tor Browser is a free and open-source software that allows users to browse the internet anonymously and privately.
pfSense is a leading open source firewall and network security solution, providing advanced protection and connectivity options.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
NBD (Network Block Device) is a network protocol implementation that allows clients to access remote block devices over a network as if they were local storage.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.