PyRank
  • Insights
  • PyPI
  • GitHub
  • Search
  • Compare
  • Advisories
  • Ecosystem
  • About

Threat Intelligence Python Packages

Python packages with the GitHub topic threat-intelligence. Sorted by relevance, with stars and monthly downloads.
OpenCTI-Platform
pycti

Open Cyber Threat Intelligence Platform

588K 10K 1K
elceef
dnstwist

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

102K 6K 848
blacklanternsecurity
bbot

The recursive internet scanner for hackers. 🧡

75K 10K 872
mandiant
flare-capa

The FLARE team's open-source tool to identify capabilities in executable files.

61K 6K 706
InQuest
iocextract

Defanged Indicator of Compromise (IOC) Extractor.

55K 581 92
fhightower
ioc-finder

Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security related information) from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. Explore our interactive documentation here: https://hightower.space/ioc-finder/

47K 183 45
anyrun
anyrun-sdk

Simplify integration with ANY.RUN REST API services

39K 14 4
kaifcodec
user-scanner

🕵️‍♂️ (2-in-1) Email & Username OSINT suite for deep data extraction. Analyzes 290+ scan vectors (105+ email / 185+ username) for security research, investigations, and digital footprinting.

19K 3K 291
GreyNoise-Intelligence
greynoise

Python3 library and command line for GreyNoise

19K 177 27
Te-k
pysafebrowsing

Python 3 Google Safe Browsing library

15K 28 8
opencybersecurityalliance
stix-shifter

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

14K 263 228
typosquatter
ail-typo-squatting

Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems.

13K 107 9
opencybersecurityalliance
stix-shifter-utils

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

13K 263 228
opencybersecurityalliance
stix-shifter-modules-splunk

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

10K 263 228
flowtriq
ftagent

Flowtriq DDoS Detection Agent. Real-time traffic monitoring, incident detection, PCAP capture, and auto-mitigation

9K 5 1
OpenOSINT
openosint

AI-powered OSINT agent with interactive REPL, MCP server, and CLI. 16 tools. Works with Claude, GPT-4, or local models. For authorized security research only.

7K 903 137
tn3w
is-crawler

Crawler detection from User-Agent strings in 50 ns. Issues and pull requests welcome!

6K 0 0
opencybersecurityalliance
firepit

Firepit - STIX Columnar Storage

6K 18 13
opencybersecurityalliance
stix-shifter-modules-elastic-ecs

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

5K 263 228
opencybersecurityalliance
stix-shifter-modules-azure-sentinel

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

5K 263 228
opencybersecurityalliance
stix-shifter-modules-qradar

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

4K 263 228
csirtgadgets
csirtg-indicator

The FASTEST way to create indicators!

4K 5 3
opencybersecurityalliance
stix-shifter-modules-stix-bundle

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

4K 263 228
opencybersecurityalliance
stix-shifter-modules-msatp

This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.

4K 263 228
    • Data from PyPI, GitHub, ClickHouse, and BigQuery