THOR Description

THOR is the most flexible and sophisticated compromise assessment tool available. Incident response engagements typically begin with a set of compromised systems and a larger group of systems that could be affected. Manual analysis of many forensic images can prove difficult. THOR accelerates your forensic analysis by providing more than 12,000 handcrafted YARA Signatures, 400 Sigma rules and many anomaly detection rules. There are also thousands of IOCs. THOR is the ideal tool to highlight suspicious elements and reduce the workload. It also speeds up forensic analysis in critical moments when quick results are crucial. THOR is a comprehensive tool that covers all the Antivirus's weaknesses. THOR has a huge signature set that includes thousands of YARA, Sigma rules, IOCs and rootkit and anomaly check. It covers all types of threats. THOR not only detects backdoors and tools used by attackers but also outputs, temporary file changes, and other traces that indicate malicious activity.

THOR Alternatives
SIRP Reviews
SIRP
(1 Rating)
SIRP is a SOAR platform that is risk-based and non-code. It connects all security teams to achieve consistent strong outcomes through a single platform. SIRP empowers Security Operations Centers, Incident Response (IR), Threat Intelligence (VM) and Security Operations Centers (SOCs). It integrates security tools, powerful automation, and orchestration tools to enable these teams. SIRP is a NO-code SOAR platform that includes a security scoring engine. The engine calculates risk scores specific to your organization based on every alert, vulnerability, and incident. Security teams can map risks to individual assets and prioritize their response at scale with this granular approach. SIRP saves security teams thousands of hours every year by making all security functions and tools available at a push of a button. SIRP's intuitive drag and drop playbook building module makes it easy to design and enforce best practices security processes.
Learn more
CyFIR Investigator Reviews
CyFIR Investigator
CyFIR digital security solutions and forensic analysis solutions offer unparalleled endpoint visibility, scaleability, and speed of resolution. Cyber resilient organizations are often spared from any damage caused by a breach. CyFIR cyber risk solutions detect, analyze, and solve active or potential threats 31x quicker than traditional EDR tools. Data breaches are becoming more frequent and more dangerous in today's post-breach world. Attack surfaces are expanding beyond the organization's walls to include thousands of connected devices and computer endspoints located in remote facilities, cloud and SaaS provider locations, and other locations.
Learn more
ASGARD Management Center Reviews
ASGARD Management Center
ASGARD Management Center is the ideal platform for incident response. It allows you to execute enterprise-wide thor scans. It provides an easy-to-use interface that allows you to execute complex response playbooks on up one million endpoints. All from one console. ASGARD ships as a hardened virtual appliance and features agents on Microsoft Windows, Linux AIX, MacOS, and MacOS. Its rich API allows interoperation with SOAR frameworks and sandboxes as well as antivirus systems, SIEM system, CMDBs, IPS, and other security devices. This demo shows how easy it can be to launch a scan using custom IOCs from an connected MISP. In this example, we select all events that have the keyword "Emotet", add them into a new rule set, and then use that rule set to launch a new Group Scan using THOR.
Learn more
Fortinet Reviews
Fortinet
(1 Rating)
Fortinet, a global leader of cybersecurity solutions, is known for its integrated and comprehensive approach to safeguarding digital devices, networks, and applications. Fortinet was founded in 2000 and offers a variety of products and solutions, including firewalls and endpoint protection systems, intrusion prevention and secure access. Fortinet Security Fabric is at the core of the company's offerings. It is a unified platform which seamlessly integrates security tools in order to deliver visibility, automate, and real-time intelligence about threats across the network. Fortinet is trusted by businesses, governments and service providers around the world. It emphasizes innovation, performance and scalability to ensure robust defense against evolving cyber-threats while supporting digital transformation.
Learn more

Integrations

View Integrations

Reviews

Total
ease
features
design
support

No User Reviews. Be the first to provide a review:

Write a Review

Company Details

Company:
Nextron Systems
Year Founded:
2017
Headquarters:
Germany
Website:
www.nextron-systems.com/thor/

Media

THOR Screenshot 1
THOR Screenshot 1 THOR Screenshot 2
Recommended Products
Deliver secure remote access with OpenVPN. Icon
Deliver secure remote access with OpenVPN.

Trusted by nearly 20,000 customers worldwide, and all major cloud providers.

OpenVPN's products provide scalable, secure remote access — giving complete freedom to your employees to work outside the office while securely accessing SaaS, the internet, and company resources.
Get started — no credit card required.

Product Details

Platforms
Windows
Mac
Linux
Type of Training
Documentation
Videos
Customer Support
Online

THOR Features and Options

Incident Response Software

Attack Behavior Analytics
Automated Remediation
Compliance Reporting
Forensic Data Retention
Incident Alerting
Incident Database
Incident Logs
Incident Reporting
Privacy Breach Reporting
SIEM Data Ingestion / Correlation
SLA Tracking / Management
Security Orchestration
Threat Intelligence
Timeline Analysis
Workflow Automation
Workflow Management

THOR Lists

THOR User Reviews

Write a Review
  • Previous
  • Next