Product Overview



THOR is our full-featured, portable and flexible compromise assessment scanner for Windows, macOS and Linux systems.

Learn More

THOR Cloud

THOR Cloud provides on-demand live forensic scans right at your fingertips.

Learn More

THOR Thunderstorm

This mode of operation turns THOR into a RESTful web service that is able to process thousands of samples per minute sent from any device within the network.

Learn More


THOR Lite is a feature-reduced version of THOR, which is bundled with the open source signature set of LOKI.

Learn More

Endpoint Agents

The Aurora Agent is a lightweight and customisable EDR agent based on Sigma. It uses Event Tracing for Windows (ETW) to recreate events that are very similar to the events generated by Microsoft’s Sysmon and applies Sigma rules and IOCs to them. Aurora complements the open Sigma standard with “response actions” that allow users to react to a Sigma match.

Learn More

Management & Analysis

ASGARD Management Center

ASGARD Management Center allows you to configure, schedule and control scans on up to 25,000 end points per instance; It also features an IOC management as well as many response functions like file or memory collection and custom playbooks to run any tool or command on your endpoints.

Learn More

ASGARD Analysis Cockpit

ASGARD Analysis Cockpit collects scan logs, manages incidents in a role based cases management, creates filters and forwards messages to your SIEM or ticket management system.

Learn More



Supercharge your detection with more than 15,000 hand crafted, curated high quality YARA rules.

Learn More

WordPress Cookie Plugin by Real Cookie Banner