how to catch a ja3 fingerprint of burpsuite client ?

[leezp]

Dear Doctor: I used firefox and set a burpsuite proxy，when I visit a TLS website I set burpsuite Proxy Intercept is on and catch a pcap file. And then I use pyja3 module to get ja3 fingerprint from the pcap file I catched。But I can't find the difference of ja3 fingerprint between I used burpsuite or directly using firefox.

looking forward to your reply.

[LeeBrotherston]

I'm not sure about JA3, as that uses less fields that I do with my technique, so you could legitimately have a fingerprint collision there. If you want to include the PCAPs, more than happy to take a look?