Scan your software with ReversingLabs
Use DigiCert® Software Trust Manager Threat detection powered by ReversingLabs to scan your software for malware, vulnerabilities, secrets, and more before releasing your software to the public.
Opmerking
Review supported file types for threat detection scanning with ReversingLabs.
Prerequisites
Signing Manager Controller (SMCTL) (version 1.37.0 or higher)
ReversingLabs scanning tool (rl-deploy)
rl-deploy is compatible with:
Windows (all Microsoft-supported versions), 64-bit
Linux x86 (all major distributions), 64-bit
Add data.reversinglabs.com and api.reversinglabs.com to your approved list to prevent your firewall or proxy from blocking calls to ReversingLabs' cloud.
Download ReversingLabs scanning tool
ReversingLabs scanning tool (rl-deploy) is included in Software Trust Manager client tools.
To download rl-deploy:
Sign in to DigiCert ONE.
Navigate to: Manager menu (top right) > Software Trust.
Select Resources > Client tool repository.
Download the following based on your operating system:
Install ReversingLabs scanning tool
To install rl-deploy, run the following command in SMCTL:
smctl scan rl-install <new folder path to install>
Command samples
If you have administrator privileges, run this command in Administrator Command Prompt:
smctl scan rl-install "C:\Program Files\DigiCert\DigiCert One Signing Manager Tools\rl"
If you do not want to give rl-deploy administrator privileges, specify an installation location that does not require administrative privileges, such as:
smctl scan rl-install "C:\rl"
Command output
Downloading [==================================================] 100% [00m:07s] 187090012/187090012 bytes Unpacking package ... finished!
Tip
Refer to errors and solutions if you encounter an error.
Create a project
Create a project to store all your related software scans, such as different versions of the same software. The software project will be referred to by a descriptive name and an alias to allow for easy reference.
You can create a project in Software Trust Manager or SMCTL:
Scan with ReversingLabs
To scan software with ReversingLabs, use the command:
smctl scan rl-scan --input <file to scan> --project <project alias> --scan-alias <scan alias> --version <version>
Command sample:
smctl scan rl-scan --input C:\Users\John.Doe\Documents\Software\MVP.so --project p1 --scan-alias MVPscan1 --version 1.0.0
Tip
Refer to errors and solutions if you encounter an error.
View scan results
To view your software scan results:
Sign in to DigiCert ONE.
Navigate to Manager menu icon (top right).
Select Software Trust.
Navigate to Threat detection.
Click on the scan alias.