ThreatPursuit VM

Threat Pursuit Virtual Machine (VM), created by our FireEye Front Line Advanced Research and Expertise (FLARE) team, is a fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

With this distribution we aim to enable users to:

  • Conduct hunting activities or missions
  • Create adversarial playbooks using evidence-based knowledge
  • Develop and apply a range of analytical products amongst datasets
  • Perform analytical pivoting across forensic artifacts and elements
  • Emulate advanced offensive security tradecraft
  • Enable situational awareness through intelligence sharing and reporting
  • Applied data science techniques & visualize clusters of symbolic data
  • Leverage open intelligence sources to provide unique insights for defense and offense

The Terms of Use for this software are subject to the licensing and terms outlined in the OSS repository.

Learn More

Support

Developer:FireEye
Contact:Email
Resources:Blog post

OSS Info

Version:2020.1
Platform:Windows
Requirements:Windows 10 1903 or greater, 60 GB Hard Drive, 4 GB RAM

Similar Apps