We Detect Hackers
Flexible and Continuous Compromise AssessmentsHave I been compromised?
With security breaches arising on multiple fronts, companies, healthcare systems, governmental and educational entities alike are starting to realize how real the threat of cyber security attacks are. In today’s world, firewalls, antivirus and network based intrusion prevention are not enough.
Compromise assessments are the most effective defense in depth measure an organization can use to ensure no threats have made it past their defenses.
Nextron System provides the best compromise assessment scanner and management platforms to facilitate a continuous assessment.
All our solutions can be used on your premises. Your data will never leave your network.


We Detect Hacker Activity
Our signature database with more than 12,000 hand crafted and high quality rules is focused on APTs (advanced persistent threats), their tool sets, scripts and malware.
We curate rules for hack tools, their output, config backdoors, RATs, web shells, suspicious system file replacements and traces of other malicious activity.
THOR is the perfect complement to your Antivirus solution.
Our Product Line
Scanners, Management and AnalysisScanners
THOR is our full-featured, portable and flexible compromise assessment scanner for Windows, macOS and Linux systems.
THOR Cloud provides on-demand live forensic scans right at your fingertips.
This mode of operation turns THOR into a RESTful web service that is able to process thousands of samples per minute sent from any device within the network.
THOR Lite is a feature-reduced version of THOR, which is bundled with the open source signature set of LOKI.
LOKI is a Python based open source IOC and YARA scanner bundled with our free and limited signature set.
Management and Analysis
ASGARD Management Center allows you to configure, schedule and control scans on up to 25,000 end points per instance; It also features an IOC management as well as many response functions like file or memory collection and custom playbooks to run any tool or command on your endpoints.
ASGARD Analysis Cockpit collects scan logs, manages incidents in a role based cases management, creates filters and forwards messages to your SIEM or ticket management system.
Feeds
Supercharge your detection with more than 12,000 hand crafted, curated high quality YARA rules.
News
Blog Posts and TweetsRecent Blog Posts
Detection Coverage of HAFNIUM Activity Reported by Microsoft and Volexity
Microsoft as well as Volexity pubslihed reports on activity of an actor named HAFNIUM by Microsoft exploiting at least four zero-day vulnerabilities in Microsoft Exchange...
ASGARD Analysis Cockpit Version 3
ASGARD Analysis Cockpit is our on-premise soft-appliance that helps you analyze large amounts of THOR log data. The new version 3, which we are going to release this month, adds...
THOR Seed v0.18 Improves Integration with Microsoft Defender ATP
A new version of THOR Seed improves the integration with Microsoft Defender ATP by handling the script termination caused by exceeded timeouts. Due to a runtime limit for all...