BE’ER SHEVA, Israel, (November 9, 2022) — Rezilion, an automatic software program safety platform, introduced at the moment the growth of its Dynamic Software program Invoice of Supplies (SBOM) functionality to help Home windows environments. By this growth, Rezilion will present organizations with a first-of-its-kind toolset to effectively handle software program vulnerabilities and meet new regulatory requirements, for the 56% of software program at the moment that’s constructed for Home windows OS.
“We’re seeing a widespread curiosity in adopting SBOMs as many organizations understand that their future safety, threat, and compliance posture depends closely on the necessity to see into their software program provide chain,” mentioned Liran Tancman, CEO, Rezilion. “A Dynamic SBOM that helps Home windows environments widens the scope of chance and provides the flexibility to an enormous variety of new prospects to satisfy regulatory requirements and detect and handle their software program vulnerabilities strategically.”
Whereas many instruments exist for organizations to handle vulnerabilities of their software program, the overwhelming majority of those had been initially constructed to be used with Linux OS, leading to gaps in performance after they’re used for Home windows. A dearth of “Home windows-first” tooling additionally impacts organizations’ preparedness to adjust to new laws such because the President’s Government Order (EO) 14028, which would require groups to supply regulators with an intensive stock of their software program environments and associated vulnerabilities.The market has been alarmingly gradual to answer this more and more pressing want for higher options. As proof of this, Microsoft itself launched its first, fundamental, open supply “Home windows-first” SBOM technology device as lately as July of this yr.
On account of these gaps, for organizations with massive, legacy Home windows environments (together with crucial infrastructures), a brand new menace on the dimensions of the “Y2K” scare of the late 1990’s is rising. Be it attackers or regulators, these organizations should modernize their safety requirements, or endure penalties of looming dangers forward.
First launched in Could, Rezilion’s Dynamic SBOM might be deployed in all software program environments – each Home windows and Linux concurrently – and offers a real-time versus static stock of all software program parts in a single graphical UI. Rezilion’s resolution additionally integrates dynamic runtime evaluation to not solely detect software program vulnerabilities, however validate their precise exploitability, serving to groups to clear away “false-positive” scan outcomes and keep away from wasteful patching work that shifts assets away from construct exercise.
Different key options and capabilities embody:
- Dynamic Identification – Immediately search and pinpoint weak parts corresponding to Log4J throughout tens of millions of recordsdata and on hundreds of hosts, containers, and functions.
- Holistic Perception & Management – View Home windows and Linux threat facet by facet in a single UI, to get an entire image of your assault floor, handle threat effectively and adjust to auditors
- Sort out Legacy Vulnerability Backlogs Effectively – Combination detected vulnerabilities, filter out false-positives and prioritize what issues to handle dangers rapidly and meet fashionable remediation SLAs as outlined by CISA with a fraction of the trouble
Be taught extra about Rezilion’s Dynamic SBOM at https://www.rezilion.com/platform/dynamic-sbom/.
Guide a demo at the moment to be taught extra about Rezilion’s Home windows software program safety options a https://www.rezilion.com/lp/windows-security-demo/.
About Rezilion
Rezilion’s platform robotically secures the software program you ship to prospects. Rezilion’s steady runtime evaluation detects weak software program parts on any layer of the software program stack and determines their exploitability, filtering out as much as 95% of recognized vulnerabilities. Rezilion then robotically mitigates exploitable vulnerabilities throughout the SDLC, lowering vulnerability backlogs and remediation timelines from months to hours whereas giving DevOps groups time to construct.