FATT - A Script For Extracting Network Metadata And Fingerprints From Pcap Files And Live Network Traffic
FATT is a script for extracting network metadata and fingerprints such as JA3 and HASSH from packet capture files pcap or live network traffic. The main use-case is for monitoring honeypots, but you can also use it for other use cases such as network forensic analysis. fatt works on Linux, macOS...