Your product contains software? From September 2026 you are responsible for its security.

We help device and hardware manufacturers meet the Cyber Resilience Act requirements. Firmware analysis, vulnerability monitoring, reporting — without a security team.

Start for freeSee demo
---
days
--
hrs
--
min
--
sec

Why this matters

The Cyber Resilience Act changes the rules for every manufacturer of products with software in the EU.

New EU regulation

The CRA requires MANUFACTURERS — not IT companies — to ensure the cybersecurity of their products. If your device contains software and is sold on the EU market, from September 2026 you must report vulnerabilities within 24 hours.

Fines up to EUR 15 million

Up to EUR 15 million or 2.5% of global annual turnover. Non-compliant products can be completely withdrawn from the EU market. The penalty targets the manufacturer — that means you.

No security department?

Most manufacturers do not have a cybersecurity team. But the CRA requires it. Our tool is your virtual compliance department — it monitors, analyses and reports for you.

Who does the CRA affect?

The CRA covers anyone who manufactures, imports or sells products with software on the EU market — even if they don’t write the code themselves.

Everything you need — in one tool

Designed for manufacturers, not developers. CRAready automates the hardest aspects of Cyber Resilience Act compliance.

Firmware analysis — no source code needed

Upload your product’s firmware. We’ll automatically detect all software components — even without access to source code. No need to ask your OEM supplier for an SBOM — we’ll generate it from the binary file.

Application screenshot

Continuous threat monitoring

We monitor vulnerability databases 24/7 — NVD, CISA KEV, GitHub Advisories, OSV. When a threat appears for a component in your product — you’ll know immediately. No need to hire a security specialist.

Application screenshot

24h reporting — ready-made forms

Key

When an actively exploited vulnerability is detected, you’ll receive a ready-made ENISA report with a countdown timer. 80% pre-filled automatically. Early warning (24h), full notification (72h) and final report (14 days) — with a single click.

Application screenshot

Compliance dashboard — like CE marking

Check the CRA status of each product on a single screen. Just as you track CE marking — now track cybersecurity. A clear dashboard with colours: green = compliant, red = action required.

Application screenshot

How it works

Three simple steps. You don’t need to be a developer or a cybersecurity specialist.

1

Upload firmware or provide a repository

You don’t need to be a developer. Upload a firmware file (.bin, .hex, .img) — we’ll take care of the rest. You can also connect a code repository if you have one. In both cases we’ll automatically generate a full SBOM.

2

Learn what’s in your product

You’ll get a full list of software components and the security status of each one. Understandable even without technical knowledge — with colours, priorities and simple recommendations.

3

Stay compliant on autopilot

Continuous monitoring and ready-made reports. When action is required — we’ll notify you and tell you exactly what to do. Zero stress, zero surprises at audit time.

Desktop App

Analyze locally. No file uploads.

Download CRAready for your computer. Your firmware and source code never leave your machine — full analysis runs 100% offline.

Coming soon

Desktop app coming soon

macOS, Windows and Linux builds are in final QA. Available shortly.

Download for macOSDownload for WindowsDownload for Linux
Runs locally on your machineNo file uploads to any serverWorks offline

Available for macOS, Windows and Linux

Pricing

Choose a plan matched to the number of products in your portfolio. All plans include full CRA support.

MonthlyAnnually

Starter

For small manufacturers and hardware start-ups

299EUR/mo
  • Products(Up to 3)
  • Firmware analysis
  • Vulnerability monitoring
  • ENISA report templates
  • Compliance dashboard
  • Email alerts
  • Repository integration
  • API access
  • Dedicated account manager
  • SLA
Most popular

Pro

For manufacturers with multiple products

799EUR/mo
  • Products(Up to 15)
  • Firmware analysis
  • Vulnerability monitoring
  • ENISA report templates
  • Compliance dashboard
  • Email alerts
  • Repository integration
  • API access
  • Dedicated account manager
  • SLA

Business

For manufacturers with a broad portfolio

1999EUR/mo
  • Products(Up to 50)
  • Firmware analysis
  • Vulnerability monitoring
  • ENISA report templates
  • Compliance dashboard
  • Email alerts
  • Repository integration
  • API access
  • Dedicated account manager
  • SLA(99.9%)

Enterprise

For OEM brands and large importers

Custom
  • Products(Unlimited)
  • Firmware analysis
  • Vulnerability monitoring
  • ENISA report templates
  • Compliance dashboard
  • Email alerts
  • Repository integration
  • API access
  • Dedicated account manager
  • SLA(99.99%)

Frequently asked questions

Your product. Your responsibility. Our tool.

Don’t wait until the last minute. September 2026 will come sooner than you think.

---
days
--
hrs
--
min
--
sec
Start for free — no credit card required