Skip to main content
Release Blogpost
​
01/24/2025
We are proud to announce a new release which brings significant enhancements to the Binary Transparency Platform. Introducing new features, performance upgrades, and critical updates to better support software supply chain transparency, vulnerability remediation, and regulatory compliance.

​
Hero Features

  • Post-quantum cryptography compliance - Understand which cryptographic algorithms in use comply with NIST guidance on post-quantum readiness (i.e. NIST IR 8547) and see what changes are needed for non-compliant algorithms.
  • Cryptographic Reachability - Prioritize actionable findings by seeing which cryptographic algorithms in a binary are reachable (actively used).

​
Features

  • Vendor signed ELF binaries - Detect signed Linux ELF binaries and see their cryptographic details.
  • Unsafe functions - See any insecure C/C++ library functions used in binaries and get suggestions on safer alternatives that align with Secure by Design principles.
  • Known fixes - Find out which dependency vulnerabilities have fixes available and see the fix details.
  • Secure by Design - Detect software development practices that aren’t aligned with CISA’s Secure by Design principles and the NIST SP 800-218 Secure Software Development Framework (SSDF).
  • Better grid controls - A new filter drawer and more column options that give more flexibility and control over how you filter, sort and search within the Findings grid, making it easier to get the view you want.
  • Enhanced reports - New Image and Finding reports with more details, that are easier to read, and the ability to generate customized reports based on filters.

​
Binarly Analysis Engine

  • Next-generation binary scanner - We rewrote the core of our scanner making scans 2.5x faster on average, and introduced parallel scanning to enable even bigger boosts to scanning across Docker containers, ISO images, and firmware.
  • Linux kernel hardening - Detection of Linux kernel hardening and recommendations.
  • Complex vulnerability support - Detection and aggregation of complex vulnerabilities that span multiple binaries for a more comprehensive view of risks.
  • UEFI hardening - More robust detection of UEFI mitigations under different build configurations (handling of function inlining, outlining, etc.) including improved checks for Stack Guard and stack canaries.
  • Bootkitty UEFI Malware - Added detection for Bootkitty Linux bootloader.