THOR Lite
THOR Lite is a free, fast, and flexible multi-platform IOC and YARA scanner that includes file system and process scan modules, extracts 'autoruns' information, and supports custom IOCs and signatures. It offers various output formats, scan throttling, and is available for Windows, Linux, and macOS. The scanner is written in Go, pre-compiled for all major platforms, and includes an encrypted open-source signature base. It allows for custom encrypted signatures and has improved performance compared to LOKI. THOR Lite is a limited version of the enterprise scanner THOR, offered for free with a newsletter subscription.
FEATURES
ALTERNATIVES
CrowdStrike Falcon is a unified cybersecurity platform providing complete protection through its AI-native XDR platform.
Event Log Explorer is a software solution for viewing, analyzing, and monitoring events recorded in Microsoft Windows event logs, offering advanced features and efficient filtering capabilities.
Cloud-based virus scan APIs for securing files, URLs, and content uploads with advanced anti-virus and malware scanning capabilities.
A robust endpoint security solution that offers data security, network security, and advanced threat prevention, all managed from a single console to protect your devices and data.
Read-only FUSE driver for Apple File System with support for encrypted volumes and fusion drives on Linux.
A simple ransomware protection that intercepts and kills malicious processes attempting to delete shadow copies using vssadmin.exe.
Kunai is a Linux-based system monitoring tool that provides real-time monitoring and threat hunting capabilities.
An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.