Current Landscape and Technologies of Binary Code Scanning Tools

This technical inquiry report provides information on the current landscape and technologies used to scan firmware samples for detection of cyber vulnerabilities.  The aim of this research is to identify and describe what binary code scanning (also called binary code analysis [BCA]) tools exist to scan firmware samples for the detection of cybervulnerabilities.  The Cybersecurity & Information Systems Information Analysis Center subject matter experts researched online sources, open-source documents, and published articles on the topic.  A wide range of open-source and commercially available tools for performing BCA was found.  This report includes details on the usage of BCA tools and a brief description of 12 tools identified, as well as resources for comparing BCA tools.