ESCRYPT CycurANALYZE powered by ONEKEY | ETAS

Support & Training Downloads Careers Contact

Global - English

The image shows a laptop with the effective vulnerability management tool ETAS CycurANALYZE powered by Onekey dashboard at its screen.

ESCRYPT CycurANALYZE powered by ONEKEY is an effective vulnerability management tool to prioritize vulnerabilities.

It automatically creates a SBOM or verifies existing SBOMs using binary files to effectively detect vulnerabilities in software components. The solution significantly reduces costs by efficiently and proactively handling issues before these become security incidents.

Your benefits

Full compliance

Compliant with automotive cybersecurity regulations and standards, including ISO/SAE 21434, UN R 155 and CRA.

API-driven integration

Easily integrate the solution into the CI/CD pipelines for automated vulnerability management.

Focus and prioritization

Leverage existing TARA for effective, context-based vulnerability prioritization, reducing remediation time.

ESCRYPT CycurANALYZE powered by ONEKEY: Easy and fast creation of a Bill of Material (BOM)

Overview graphic to describe the easy and fast creation of a Bill of Material (BOM) with ESCRYPT CycurANALYZE powered by ONEKEY — 1. Automated generation a Software Bill of Material (SBOM) by utilizing a binary file to identify components and dependencies in a product.
2. The existing verification process compares an existing SBOM against binary files to detect hidden components.
3. Automated vulnerability scan for identification of known vulnerabilities against components.

Features

Numbers zero and one with two people

Creation of a Bill of Material (BOM)

Numbers zero and one with two people

Creation of a Bill of Material (BOM)

Component identification from binaries

Gain an accurate overview of software components in respective products
Generate a comprehensive BOM directly from compiled binary files
Identify components, versions, and license information

BOM verification

Verify an existing BOM using a compiled binary file
Detect hidden or undocumented dependencies of components, versions, and license information
Identify whether a vendor has provided an incomplete or outdated BOM

Numbers zero and one with two people

Numbers zero and two with two people discussing

Detection of vulnerabilities

Numbers zero and two with two people discussing

Detection of vulnerabilities

Automated detection and prioritization

Connection to internal or publicly available vulnerability databases like NVD
Automatic mapping of BOM to available vulnerabilities by scanning BOM components against known vulnerabilities in your selected databases
Categorization of vulnerabilities using the binary context

Improved software security

Focus on source code and binary firmware with more than 40 scanners
Track down command injection
Find buffer overflow and other critical vulnerabilities
Benefit from detailed reporting with recommended actions

Numbers zero and two with two people discussing

Numbers zero and three with a woman sitting with a laptop on a chair

Perfect combination to reduce risk and prioritize issues

Numbers zero and three with a woman sitting with a laptop on a chair

Perfect combination to reduce risk and prioritize issues

Add-on: Risk-based vulnerability management

Automatic prioritization of most critical vulnerabilities based on impact and context of assets by using ESCRYPT CycurRISK TARA information
Accelerated decision-making with a strategic focus on most critical vulnerabilities
The number of vulnerabilities in a product become more manageable, compared to scanning with a respective BOM without additional context
Efficient capacity utilization by addressing issues that are most relevant in the product

Numbers zero and three with a woman sitting with a laptop on a chair

Woman analyzing ESCRYPT CycurRISK report

Detect and prioritize vulnerabilities faster

ESCRYPT CycurANALYZE powered by ONEKEY automatically creates a SBOM or verifies existing SBOMs using binary files to detect vulnerabilities in software components. By integrating the tool with ESCRYPT CycurRISK, companies reduce the time required to assess, prioritize and focus on most critical vulnerabilities based on impact and context of assets.

Learn more about ESCRYPT Vulnerability management

Explore our related use cases

Contact us

Do you have any questions? Feel free to send us a message. We will be more than happy to help.

Contact us today!

Support hotline