Alternatives and similar repositories for CSIRT-Jump-Bag

Users that are interested in CSIRT-Jump-Bag are comparing it to the libraries listed below

• cudeso / dfir-iris-misp-timesketch

  View on GitHub
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Feb 2, 2022Updated 4 years ago
• MagnetForensics / Magnet-RESPONSE-PowerShell

  View on GitHub
  PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.
  ☆30Jan 9, 2025Updated last year
• dwmetz / PSHero

  View on GitHub
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆36Jul 11, 2023Updated 2 years ago
• marjatech / threatfox2misp

  View on GitHub
  Creating a Feed of MISP Events from ThreatFox (by abuse.ch)
  ☆19Jun 2, 2021Updated 4 years ago
• reverseame / APOTHEOSIS

  View on GitHub
  A specialized implementation of the Hierarchical Navigable Small World (HNSW) data structure adapted for efficient nearest neighbor looku…
  ☆10Jan 26, 2026Updated 2 weeks ago
• vu-ls / advise

  View on GitHub
  The Advanced Vulnerability Information Sharing Environment -- A Platform for CVD and PSIRT Management
  ☆10Jan 30, 2024Updated 2 years ago
• 0xtibs / Threat_Intel

  View on GitHub
  Automating simple report creating of threat intelligence using ChatGPT and Greynoise API.
  ☆10Oct 3, 2023Updated 2 years ago
• CIRCL / pbtc

  View on GitHub
  Passive Bitcoin Project
  ☆10Aug 10, 2015Updated 10 years ago
• nesg-ugr / c4darknet

  View on GitHub
  ☆10Apr 10, 2024Updated last year
• spitzbuaamy / AbuseCH-to-MISP

  View on GitHub
  Import AbuseCH IOC Feeds into MISP
  ☆12Feb 17, 2021Updated 4 years ago
• andreafortuna / malhunt

  View on GitHub
  Hunt malware with Volatility
  ☆47Jul 9, 2025Updated 7 months ago
• sfakiana / FIRST-CTI-2019

  View on GitHub
  References for FIRST CTI 2019 Symposium presentation
  ☆23Mar 19, 2019Updated 6 years ago
• jiabailie / Althttpd

  View on GitHub
  Althttpd is a simple webserver that has run the https://sqlite.org/ website since 2004. Althttpd strives for simplicity, security, and lo…
  ☆11Jun 12, 2021Updated 4 years ago
• inc0x0 / multipot

  View on GitHub
  Small Python-based web application honeypot with built-in analysis tools.
  ☆12Sep 15, 2019Updated 6 years ago
• socprime / SigmaRulesIntegration

  View on GitHub
  ☆15Mar 13, 2018Updated 7 years ago
• AbdulRhmanAlfaifi / SDSParser-rs

  View on GitHub
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Jan 9, 2023Updated 3 years ago
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆108Nov 14, 2025Updated 3 months ago
• CyCat-project / cycat-service

  View on GitHub
  CyCAT.org API back-end server including crawlers
  ☆29Feb 4, 2023Updated 3 years ago
• MITRECND / malchive

  View on GitHub
  Various capabilities for static malware analysis.
  ☆79Sep 4, 2024Updated last year
• 0xsyr0 / Red-Team-Field-Guide

  View on GitHub
  Field guide to gather low-hanging fruits
  ☆14Mar 20, 2025Updated 10 months ago
• eCrimeLabs / cratos-fastapi

  View on GitHub
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Sep 21, 2025Updated 4 months ago
• ninoseki / iocingestor

  View on GitHub
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Feb 6, 2024Updated 2 years ago
• markmckinnon / cLeapp

  View on GitHub
  Chrome Logs Events and Protobuf Parser
  ☆40Dec 13, 2022Updated 3 years ago
• mohlcyber / MISP-STIX-ESM

  View on GitHub
  Exports MISP events to STIX and ingest into McAfee ESM
  ☆15Feb 12, 2020Updated 6 years ago
• behas / ransomware-dataset

  View on GitHub
  Economics of Ransomware | Dataset
  ☆15May 2, 2018Updated 7 years ago
• sebdraven / IOCmite

  View on GitHub
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆36Nov 9, 2022Updated 3 years ago
• COSSAS / sacti

  View on GitHub
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Oct 24, 2022Updated 3 years ago
• tomvandermussele-zz / autopsy-plugins

  View on GitHub
  ☆17Apr 13, 2018Updated 7 years ago
• scrapy / xtractmime

  View on GitHub
  https://mimesniff.spec.whatwg.org/ implementation for Python
  ☆13Jan 16, 2024Updated 2 years ago
• kacos2000 / Prefetch-Browser

  View on GitHub
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆64Dec 18, 2024Updated last year
• ydkhatri / jarp

  View on GitHub
  Just Another broken Registry Parser (JARP)
  ☆16May 23, 2024Updated last year
• nccgroup / JA3_outlier

  View on GitHub
  Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
  ☆16Aug 10, 2022Updated 3 years ago
• zerber0s / mac_int

  View on GitHub
  macOS Artifact Intelligence Tool
  ☆13Apr 30, 2019Updated 6 years ago
• chrislee35 / yaratool

  View on GitHub
  Python libary to normalize Yara signatures
  ☆19Oct 9, 2020Updated 5 years ago
• syloktools / MISP-QRADAR-REFERENCE-SET-BUILDER

  View on GitHub
  Pulls IOCs from MISP and adds the to reference sets in QRadar
  ☆34Apr 20, 2023Updated 2 years ago
• CERT-Bund / yara-exporter

  View on GitHub
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Mar 27, 2017Updated 8 years ago
• CAIDA / commoncrawl-host-ip-mapper

  View on GitHub
  Crawler that retrieves commoncrawl's crawled hosts and their corresponding IPs
  ☆21Sep 1, 2025Updated 5 months ago
• Beercow / OneDriveExplorer

  View on GitHub
  OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…
  ☆228Jan 6, 2026Updated last month
• HuskyHacks / MalAPIReader

  View on GitHub
  Reads and prints information from the website MalAPI.io
  ☆39Jan 18, 2022Updated 4 years ago