ts-deepscan
is a file analyser that allows performing detailed assessments of components and their inner workings. It is built into ts-scan and can automatically be used by ts-scan. However, you also may use its capabilities to assess hundreds of code repositories for
- crypto algorithms,
- copyright notices
- license information
- malware (via yara rules)
It is tuned for performance to adapt to the machine it is running on, scaling with the size of the CPU(s).
Want to learn more?
Contact our experts!
We provide DeepScan in different flavours
As an open source tool
The implementation is freely available and even integrated with our ts-scan solution. However, you may want to use it separately or add it as a local service for your own TrustSource instance. We have provided it to allow for full privacy. Scan results can be transferred to TrustSource for further processing.
As a free public Service
To give back, we offer a hosted solution that you may use through a simple web frontend. provide a URL and DeepScan will queue the request, download the sources and scan for findings. You may wait for the results or leave your email to receive a completion notification with a link to the results.
As part of the TrustSource SaaS
DeepScan is part of the TrustSource platform. We have provided a highly scalable service integration, which allows the automated scanning of complete SBOMs with thousands of components or repositories. You may even decide to scale out automatically in your private VPC. Your privacy is our concern.
Operating via API
sss
You may also decide to use our cloud-based scalable setup with almost unlimited capacity as an extension for your local TrustSource service installation. It may sound weird, but it’s simply possible.