Fingerprint All The Things – Pyshark Script for Extracting Network Metadata and Fingerprints from Pcap Files or Live Network Traffic
A script for extracting network metadata and fingerprints such as JA3 and HASSH from packet capture files (pcap) or live network traffic. The main use-case is for monitoring honeypots, but you can also use it for other use cases such as network forensic analysis. fatt works on Linux, macOS and Windows. Note that fatt uses […]