CISA announces release of Thorium for malware analysis
The Cybersecurity and Infrastructure Security Agency (CISA), in partnership with Sandia National Laboratories, released Thorium, an automated, scalable malware and forensic analysis platform that can integrate commercial, custom and open-source analysis tools and enable cyber defenders to quickly assess malware threats and index forensic analysis results into a unified platform.
Advanced persistent threats using malware continue to increase in volume and complexity. The analysis of malware and forensics must be done accurately and quickly to enable organizations to defend their networks. However, malware analysts across government, public and private sectors are challenged with vast amounts of malware and managing a long list of malware analysis tools with specific capabilities and not enough time & resources to effectively analyze the threat.