HoneyLabs

JA4 TLS client fingerprint

t13i191000_9dc949149365_be53661681a4

Seen 2026-02-19 to 2026-07-09 across the retained window.

3

Source IPs

3

Networks

3

Countries

111

Ports hit

2.0K

Events

1

IPs / network

This fingerprint is spread thinly across many networks, which is the shape of a common, widely-used client.

Top networks

Countries

RO 1NL 1DE 1

Ports targeted

Source IPCCNetworkEvents
80.82.77.202NLAS202425 IP Volume inc1.9K
138.246.253.24DEAS12816 Leibniz-Rechenzentrum118
80.94.95.40ROAS204428 SS-Net24

About this fingerprint

JA4 is a fingerprint of the TLS Client Hello: the version, cipher suites, extensions and signature algorithms a client offers when it opens an HTTPS connection. Clients built on the same library and version produce the same JA4, which makes it a durable handle on the tool behind the traffic.