1
THOR Lite
A free, fast, and flexible multi-platform IOC and YARA scanner for Windows, Linux, and macOS.
THOR Lite
A free, fast, and flexible multi-platform IOC and YARA scanner for Windows, Linux, and macOS.
Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaignTHOR Lite Description
THOR Lite is a free, fast, and flexible multi-platform IOC and YARA scanner that includes file system and process scan modules, extracts 'autoruns' information, and supports custom IOCs and signatures. It offers various output formats, scan throttling, and is available for Windows, Linux, and macOS. The scanner is written in Go, pre-compiled for all major platforms, and includes an encrypted open-source signature base. It allows for custom encrypted signatures and has improved performance compared to LOKI. THOR Lite is a limited version of the enterprise scanner THOR, offered for free with a newsletter subscription.
THOR Lite FAQ
Common questions about THOR Lite including features, pricing, alternatives, and user reviews.
THOR Lite is A free, fast, and flexible multi-platform IOC and YARA scanner for Windows, Linux, and macOS. It is a Security Operations solution designed to help security teams with IOC, Scanner, YARA.
THOR Lite is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://www.nextron-systems.com/thor-lite/ for download and installation instructions.
Popular alternatives to THOR Lite include:
1.Spyre - A simple, self-contained modular host-based IOC scanner for incident responders. (Free)
2.AISI DFIR - Managed DFIR service with proprietary tools for forensics & IR. (Commercial)
3.GLIMPS Malware Expert - Deep learning-based malware analysis & threat contextualization platform. (Commercial)
4.Stairwell Intelligent Analysis - AI-powered file analysis platform delivering malware verdicts in natural language. (Commercial)
5.PyaraScanner - A multithreaded YARA scanner for incident response or malware zoos. (Free)
Compare these tools and more at https://cybersectools.com/categories/security-operations
THOR Lite is for security teams and organizations that need IOC, Scanner, YARA. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations
Have more questions? Browse our categories or search for specific tools.
