The Cybersecurity and Infrastructure Security Agency has released a new open-source malware and forensic analysis platform designed to help analysts automate large-scale threat detection.
Developed in partnership with Sandia National Laboratories, the platform, called Thorium, allows users to integrate custom, commercial and open-source analysis tools and enables automated, customizable analysis workflows, CISA said Thursday.
Join the Potomac Officers Club’s 2025 Homeland Security Summit to learn more about the latest in U.S. homeland security programs, efforts and strategic initiatives.
Thorium Accelerates Malware Analysis
Cybersecurity teams can also filter tool results using tags and full-text search; use strict group-based permissions to control access to submissions, tools and results; scale with hardware using Kubernetes and ScyllaDB to meet workload requirements; and import and export tools for ease of sharing across cyber defense teams.
The platform can ingest over 10 million files per hour and run more than 1,700 jobs per second, while maintaining a fast results query. Thorium is now publicly available through GitHub.
“The Thorium framework underscores CISA’s focus and commitment to provide valuable services and resources at scale that help government and critical infrastructure protect against cyber threats and strengthen their cybersecurity,” said Jermaine Roebuck, CISA associate director for threat hunting. “By publicly sharing this platform, we empower the broader cybersecurity community to orchestrate the use of advanced tools for malware and forensic analysis.”
Related Articles
The Senate Appropriations Committee on Thursday voted 26-3 to pass a bill that would appropriate $851.9 billion in discretionary defense funding for fiscal year 2026. Weapons Systems Procurement The committee said Thursday the proposed FY 2026 Defense Appropriations Act would allocate $171.3 billion for weapon systems procurement and $140.5 billion for platform research, development and testing. The measure includes a $280 million increase in funding for F-135 spare engines and an additional $500 million for F-35 sustainment spare parts; an additional $216 million for drone and counter-drone tech capabilities; $4.6 billion more for air and missile defense efforts; and a
NASA wants to team up with industry to develop advanced space technologies for future commercial or government use. The space agency on Wednesday issued an announcement of collaboration opportunity, or ACO, to solicit partnership proposals. Managed by the Space Technology Mission Directorate, the ACO gives industry partners access to NASA subject matter expertise, facilities, software and hardware to accelerate and enhance capability development. According to NASA, the ACO will be open for five years and will serve as an umbrella opportunity for topic-specific appendices that would be released every six to 12 months to address evolving needs. For the 2025
Robert F. Kennedy, Jr., head of the Department of Health and Human Services, and other government and healthcare technology leaders have committed to delivering a patient-centric digital health ecosystem. At an event hosted by the Centers for Medicare & Medicaid Services at the White House, over 60 companies pledged to collaborate and deliver results that benefit the public in the first quarter of 2026. Meanwhile, 11 health systems and providers said they will support patient use. Seven electronic health record companies pledged to facilitate data exchange. According to Kennedy, bureaucrats and entrenched interests have made health data inaccessible to patients,