2 min read Steffen Pfendtner

KernelScan is open — request your invitation code

Announcements

We're thrilled to share that KernelScan is open. After months of building, importing, and triaging tens of thousands of Linux kernel CVEs, the platform is live and producing real CycloneDX VEX reports for real kernel builds.

We're rolling out access gradually, by invitation, while we scale up the analysis pipeline and make sure every new account gets a fast, reliable experience. If you'd like to be part of this early phase, request an invitation code — we're approving new users regularly.

Request an invitation

What KernelScan does

Upload a Linux kernel .config, pick your version and architecture, and KernelScan maps your exact build against the known CVE corpus. Instead of a flat "your kernel version is affected by 900 CVEs" list, you get a configuration-aware verdict: which CVEs actually reach the code you compiled in, which are ruled out because the vulnerable CONFIG_* symbol is off, and which still need triage.

  • Version- and architecture-aware CVE matching, not just a banner-version lookup.
  • Deterministic CONFIG_* mapping from each fix commit to the symbols it touches.
  • Product security factors that decide whether a CVE actually matters for your device.
  • CycloneDX 1.6 VEX output you can feed straight into Dependency-Track and friends.

There's a full walkthrough in the docs, and a public CVE feed you can plug into today without an account.

Why invitation-only for now

Kernel CVE analysis is heavy: every kernel version and architecture we support means parsing real Kconfig trees and re-mapping thousands of fix commits. We'd rather onboard people at a pace where each account feels instant than open the floodgates and have the queue crawl. As we add capacity, we widen the door.

Early users also shape the product. The feedback we get now — on verdicts, on the factor model, on the report format — goes straight into what KernelScan becomes.

How to get in

Requesting access takes a few seconds — tell us your email and, if you like, a sentence about what you'd use KernelScan for. We review requests and send invitation codes as we open up new slots.

Request an invitation: use the Request access form, or email us at support@kernelscan.io. Already have a code? Redeem it here.

Thanks for being early. We're just getting started — and there's a lot more on the way.

Request an invitation