nginx-ssl-fingerprint
nginx-ssl-fingerprint copied to clipboard
phuslu
high performance ja3 and http2 fingerprint for nginx.
Per the original JA3 project README: "We also needed to introduce some code to account for Google’s GREASE (Generate Random Extensions And Sustain Extensibility) as described [here](https://tools.ietf.org/html/draft-davidben-tls-grease-01). Google uses this...
change: - 1. left comma if group or format is null, keep ja3 has 5 fields. - 2. ignore padding extension due to padding will null when resuing session ticket
Cisco ssl fingerprint is a more complete implementation https://resources.sei.cmu.edu/asset_files/Presentation/2019_017_001_539902.pdf
Add tests. Related: https://github.com/phuslu/nginx-ssl-fingerprint/issues/25 Progress: - [x] Add simple smoke tests - [ ] Add more ja3transport.Browser's (currently any browser except ja3transport.ChromeVersion103 trigger error, so need research) - [ ]...
Stumbled on this while doing testing, was pulling `master` while testing a nginx 1.21.4 / openssl 1.1.1q deployment and was getting segfaults. Traced this to the 0.4.0 and subsequent patches,...
I think project need some tests in pipeline for production grade. For example: 1) some popular ja3 hashes 2) http and https smoke tests 3) invalid ssl handshake 4) something...
It would be great to allow to get raw ja3 fingeprint
There exist updates in TLS client fingerprinting technology https://github.com/FoxIO-LLC/ja4/tree/main
I cannot reproduce the error with curl, I can't see it in the logs(segfaults before the log) and there are like 4k rps on a single server, so debug logs...
