CISA releases Thorium automated malware and forensic analysis platform
Security Tool/Service
Summary
Hide ▲
Show ▼
CISA, in partnership with Sandia National Laboratories, released Thorium, an automated, scalable malware and forensic analysis platform that helps defenders assess malware threats and centralize forensic results. The platform matters because it lets teams combine commercial, custom, and open-source tools into one workflow and handle high-volume analysis more efficiently. It is configured to ingest over 10 million files per hour per permission group and schedule over 1,700 jobs per second.
Timeline
-
31.07.2025 15:00 1 articles · 10mo ago
CISA and Sandia release Thorium malware analysis platform
Initial DisclosureCISA, in partnership with Sandia National Laboratories, released Thorium, an automated and scalable malware and forensic analysis platform that integrates commercial, custom, and open-source tools to help cyber defenders quickly assess malware threats and centralize forensic results. Thorium is configured to ingest over 10 million files per hour per permission group and schedule over 1,700 jobs per second, with support for shared analysis workflows, tag filtering, full-text search, group-based permissions, and tool sharing across cyber defense teams.
Show sources
- CISA Announces Release of Thorium for Malware Analysis — www.cisa.gov — 31.07.2025 15:00