• The Australian Signals Directorate launched Azul, a free malware analysis tool. • Azul is designed for reverse engineers and incident responders. • The platform runs on Kubernetes and uses Python, Go, and TypeScript. • It requires prior malware flagging before analysis. • Azul represents a new open‑source resource for cybersecurity teams.

Article Summaries:

  • The Australian Signals Directorate (ASD) has unveiled Azul, an open‑source malware analysis platform now available at version 9.0.0. Designed for reverse engineers and incident responders, Azul is not a triage tool; samples should first be flagged by a separate system such as Canada’s AssemblyLine. The platform, built with Python, Go, and TypeScript, runs on Kubernetes via Helm, uses Apache Kafka for event queuing, and stores samples in an S3‑compatible object store. Monitoring is handled by Prometheus, Loki, and Grafana. Azul includes a web interface, REST API, and headless client, supports YARA, Snort, and Maco, and is released under an MIT license on GitHub.

Sources: