Static and dynamic analysis — in a single API call.
POST /v1/malware/classify
Submit any file or binary and get back a high-confidence malware verdict with full reasoning. Multi-model ensemble analysis powered by Triton Inference Server — supports PE, ELF, Mach-O, scripts, documents, and unknown file types.
Everything you need
A complete solution — from discovery to enforcement to response.
Static Analysis
PE, ELF, Mach-O, scripts, Office documents, and PDFs analyzed without execution — safe and fast.
Dynamic Behavioral Sandboxing
Unknown samples are detonated in an isolated sandbox. Behavioral indicators extracted and scored against threat models.
Multi-Model Ensemble
Triton Inference Server orchestrates multiple specialized models — signature, behavior, and heuristic — for high-confidence verdicts.
Threat Intelligence Enrichment
Every verdict enriched with VirusTotal, MISP, and internal IOC feeds — family name, campaign attribution, and related samples.
Async Batch Mode
Submit large file batches via async webhook or Kafka delivery. Ideal for email gateway scanning, upload inspection, and archive processing.
SHAP Explainability
Every verdict includes a SHAP breakdown — which features triggered the classification and why. Auditable for SOC 2 and NIST AI RMF.
Built for your team
Email Security
Scan attachments in transit — block malware before it reaches the inbox without adding perceptible latency.
Endpoint Detection
Augment EDR coverage with cloud-based ML verdicts for files that signature scanners miss.
Upload Inspection
Scan every user-uploaded file — documents, archives, executables — before storing or processing them.
Threat Intelligence Teams
Rapidly triage large malware corpora. Classify hundreds of samples per minute via async batch mode.
Start building with the AI Security API
Join hundreds of engineering and security teams who rely on AlektroAI for real-time threat detection and compliance.