PyRank
  • Insights
  • PyPI
  • GitHub
  • Search
  • Compare
  • Advisories
  • Ecosystem
  • About

Incident Response Python Packages

Python packages with the GitHub topic incident-response. Sorted by relevance, with stars and monthly downloads.
volatilityfoundation
volatility3

Volatility 3.0 development

79K 4K 670
TheHive-Project
cortexutils

Cortex Analyzers Repository

17K 485 403
Mhmdhammoud
horus-source

Graph-powered code intelligence engine — indexes codebases into a knowledge graph, exposed via MCP tools for AI agents and a CLI for developers.

12K 0 0
adanb13
cirdanops

AI infrastructure cartographer and operations daemon — Graphify for live infrastructure. Fingerprints, graphs, and watches Docker/Kubernetes/AWS/IaC for AI agents via CLI + MCP.

10K 0 0
tenzir
tenzir

Tenzir is the data pipeline engine for security teams.

7K 744 105
ManoManoTech
firefighter-incident

FireFighter is an incident management application, designed to work in Slack, and more.

5K 25 6
Thehive-Project
cortex4py

Python API Client for Cortex

3K 33 31
PraveenLuke
ecs-doctor

One command to diagnose why your ECS service is failing — events, logs, ALB health, metrics, config, and network in a single confidence-scored report

3K 2 0
certtools
intelmq

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

3K 1K 317
ulmentflam
autosentry

Self-healing supervisor for long-running processes — watch a command, catch the failure, fix it, leave a paper trail.

2K 2 0
squid-protocol
gitgalaxy

An AST-free, LLM-free heuristic knowledge graph engine for deep repository intelligence. Map, secure, and modernize enterprise codebases across 50+ languages at extreme velocity

2K 45 2
vindicara-inc
projectair

Project AIR: forensic reconstruction and incident response for AI agents. Signed AgDR decision records, OWASP ASI01-ASI10 detection, signed forensic evidence exports.

2K 1 0
davidonzo
apiosintds

On demand query API for https://github.com/davidonzo/Threat-Intel project.

2K 59 9
tenzir
pyvast

Tenzir is the data pipeline engine for security teams.

1K 744 105
benjaminjornet
ops-copilot

Self-hosted SRE investigation copilot with LangGraph, YAML-defined SSH tools, SSE streaming, sanitization, and built-in secret redaction.

1K 2 1
altikva
spero

Self-healing supervision agent for Linux hosts and Kubernetes

1K 0 0
0xlam
phishsage

CLI toolkit for email phishing analysis. Parses .eml files, runs heuristic checks on headers, links, and attachments, and outputs structured JSON.

1K 2 0
BeyondTrust
bedrock-keys-security

Detect phantom IAM users, decode leaked AWS Bedrock and Claude Platform API keys, and prevent LLMjacking. CLI + SCPs + SIEM detection rules.

845 33 2
monzo
django-incident-response

Monzo's real-time incident response and reporting tool ⚡️

664 2K 172
resq-software
resq-mcp

FastMCP server exposing ResQ platform capabilities to AI clients

662 1 1
chapinb
chickadee

Yet another GeoIP resolution tool.

565 8 1
ace-ecosystem
lerc-control

Libraries and utilities for controling and working with Live Endpoint Response Clients.

542 0 3
yannickboog
ransomwatch

ransomwatch is a Python based tool designed for ransomware threat intelligence and security research.

512 4 0
Hexastrike
pyrsistencesniper

We took PersistenceSniper, merged it with Python, and misspelled it on purpose. Meet PyrsistenceSniper.

455 230 31
    • Data from PyPI, GitHub, ClickHouse, and BigQuery