Scan your software with Software Binary Analysis
Nota
Depending on your threat detection service tiers, some features may not be available. To learn what features are included in your service tier, see Software binary analysis (SBA) features.
Use DigiCert® Software Trust Manager Threat detection powered by ReversingLabs to scan your software for malware, vulnerabilities, secrets, and more before releasing your software to the public.
Nota
Review supported file types for threat detection scanning with ReversingLabs.
Prerequisites
Signing Manager Controller (SMCTL) (version 1.37.0 or higher)
ReversingLabs scanning tool (rl-deploy)
rl-deploy is compatible with:
Windows (all Microsoft-supported versions), 64-bit
Linux x86 (all major distributions), 64-bit
Add data.reversinglabs.com and api.reversinglabs.com to your approved list to prevent your firewall or proxy from blocking calls to ReversingLabs' cloud.
Create a project
Create a project to store all your related software scans, such as different versions of the same software. The software project will be referred to by a descriptive name and an alias to allow for easy reference.
You can create a project in Software Trust Manager or SMCTL:
To scan software with Static Binary Analysis, use the command:
smctl scan rl-scan --input <file to scan> --project <project alias> --scan-alias <scan alias> --version <version>
Command sample:
smctl scan rl-scan --input C:\Users\John.Doe\Documents\Software\MVP.so --project p1 --scan-alias MVPscan1 --version 1.0.0
Sugerencia
Refer to errors and solutions if you encounter an error.
View scan results
To view your software scan results:
Sign in to DigiCert ONE.
Navigate to Manager menu icon (top right).
Select Software Trust.
Navigate to Threat detection.
Click on the scan alias.