TitaniumCore

Malware Analysis Solution

World’s Fastest, Most Comprehensive Static Analysis for Threat Intelligence

Key Features

  • 1

    Unique Automated Static Analysis fully-dissects internal contents of files without execution to detect attacks, determine threat level and expose vital information for remediation

  • 2

    Empowers SOC/CIRTs and enriches threat intelligence for many security solutions by exposing multi-layered obfuscation used to mask true payload and intent to accelerate triage

  • 3

    YARA-based rules matched on all decompressed content; custom rules and 3 rd party modules supported

  • 4

    Scales elastically to process the most-demanding workloads across Linux and Windows platforms

Overview

TitaniumCore implements highly scalable automated static analysis to recursively unpack, extract internal indicators and calculate threat levels of files to support real-time and/or high-volume applications. With static analysis, files are not executed so that detailed analysis may be performed in milliseconds on an extensive list of file types. TitaniumCore consists of software and an SDK for integration into advanced automated workflows, products or services.

TiCore product graph

High-Speed Analysis for a New Generation of Advanced Threats

TitaniumCore performs advanced file analysis at millisecond speeds with a powerful engine for applications of any scale from a few samples to millions of samples daily. The rules engine calculates threat level based on rules provided by ReversingLabs and YARA rules supplied by the customer. Extracted files can automatically be routed to additional analysis tools (e.g., de-compilers, debuggers, sandboxes) or an analyst for further analysis based on threat level and type to make the most efficient use of security assets. No other product (e.g., sandboxes or scanners) exposes the breadth and depth of threat indicators extracted by TitaniumCore.

TitaniumCore Version Options

ReversingLabs enterprise scale analysis solutions perform pre-execution, near real-time deep inspection of the high volumes of files encountered in large organizations.

TitaniumCore provides the software engine that processes files using ReversingLabs unique File Decomposition technology. TitaniumCore implements high performance automated static analysis to recursively unpack, extract internal indicators and calculate the threat level of files to support real-time and/or high-volume applications

TitaniumCore Enterprise extends the TitaniumCore base solution to cover advanced analysis applications by adding ReversingLabs Hashing Algorithm (RHA) to calculate functional similarity to known malware and TitaniumCloud File Reputation integration to identify known goodware and malware against a database of over 6B goodware and malware files.

Ask for a Demo today

All Products