A comprehensive Python-based toolkit for detecting, analyzing, and reporting on malicious PDF files. This project implements both static and behavioral analysis techniques used by SOC analysts and ...

We are either at the dawn of AI-driven malware that rewrites itself on the fly, or we are seeing vendors and threat actors exaggerate its capabilities. Recent Google and MIT Sloan reports reignited ...

ClickFix attacks have evolved to feature videos that guide victims through the self-infection process, a timer to pressure targets into taking risky actions, and automatic detection of the operating ...

The Cybersecurity and Infrastructure Security Agency (CISA), in partnership with Sandia National Laboratories, has announced the release of Thorium, an automated, scalable malware and forensic ...

The US Cybersecurity and Infrastructure Security Agency (CISA) has released Thorium, a high-throughput open-source platform for automated malware and forensic file analysis. Developed in partnership ...

The Cybersecurity and Infrastructure Security Agency has released a new open-source malware and forensic analysis platform designed to help analysts automate large-scale threat detection. Developed in ...

The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Department of Energy's Sandia National Laboratories, has released Thorium, an automated malware and forensic ...

To help cyber defenders automate workflows at scale, the Cybersecurity and Infrastructure Security Agency (CISA) has announced its launch of a new file analysis platform. Named Thorium, the platform ...

Qiling Framework is a powerful tool for malware analysis. Its sandboxed emulation environment allows you to safely execute and inspect malicious code, while its hooking capabilities provide deep ...

Today, Microsoft Threat Intelligence Center is excited to announce the release of RIFT, a tool designed to assist malware analysts automate the identification of attacker-written code within Rust ...

A newly uncovered remote access Trojan (RAT) that operated for weeks on a compromised system has been discovered and analyzed by security researchers. According to Fortinet’s FortiGuard Incident ...