Onekey resources

Access the latest Whitepaper, Datasheets, research, and security advisories on cybersecurity and compliance—all in one place.

Featured resources

TACKLING SOFTWARE SUPPLY CHAIN RISKS WITH IEC 62443 AND SBOM

Whitepapers

Sep 1, 2024

min read

TACKLING SOFTWARE SUPPLY CHAIN RISKS WITH IEC 62443 AND SBOM

This whitepaper targets security teams of industrial automation and control systems (IACS) asset owners and product suppliers.

This is some text inside of a div block.

Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X

Research

May 27, 2024

min read

Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X

Explore ONEKEY Research Lab's security advisory detailing a critical vulnerability in the TP-Link Archer C5400X router. Learn about the risks and recommended actions.

This is some text inside of a div block.

Research

Jul 9, 2024

min read

The X in XFTP Stands For eXecute

Find out how our platform enhances firmware security by identifying vulnerabilities & bugs in ICT products, ensuring compliance with DORA & NIS2 directive.

This is some text inside of a div block.

German Startup Cup goes to Cyber Resilience Specialist ONEKEY

Blog

Jun 26, 2023

min read

German Startup Cup goes to Cyber Resilience Specialist ONEKEY

Secure your digital devices and enhance compliance with ONEKEY, the winner of the German Startup Cup. Reach out to us today and join the leading edge!

This is some text inside of a div block.

Product Cybersecurity Platform ONEKEY recognised as One of the Top Ten Solutions for Software Composition Analysis

Blog

Oct 13, 2023

min read

Product Cybersecurity Platform ONEKEY recognised as One of the Top Ten Solutions for Software Composition Analysis

ONEKEY is one of the top ten solutions for software composition analysis. This highlights the excellence of our product Cybersecurity & Compliance Platform.

This is some text inside of a div block.

Research

Oct 19, 2023

min read

Making TOCTOU Great again - X(R)IP

ONEKEY Seucrity Insight: Delve into TOCTOU vulnerabilities in embedded systems utilizing XiP. Discover how these gaps at the hardware level can compromise secure boot processes.

Blog

Oct 13, 2023

min read

Product Cybersecurity Platform ONEKEY recognised as One of the Top Ten Solutions for Software Composition Analysis

ONEKEY is one of the top ten solutions for software composition analysis. This highlights the excellence of our product Cybersecurity & Compliance Platform.

Security Advisory: Clock Fault Injection on Mocor OS - Password Bypass

Research

Aug 8, 2023

min read

Security Advisory: Clock Fault Injection on Mocor OS - Password Bypass

Discover the critical vulnerabilty in the Mocor OS on UNISOC SC6531E devices that allows unauthorised users to bypass locks via clock fault injection.

Blog

Jun 26, 2023

min read

German Startup Cup goes to Cyber Resilience Specialist ONEKEY

Secure your digital devices and enhance compliance with ONEKEY, the winner of the German Startup Cup. Reach out to us today and join the leading edge!

Security Advisory: Unauthenticated Remote Command Execution in Multiple WAGO Products

Research

May 15, 2023

min read

Security Advisory: Unauthenticated Remote Command Execution in Multiple WAGO Products

Security Advisory: Critical unauthenticated command injection vulnerability in the "Legal Information" plugin of the WAGO Series PFC100 web interface.

Research

May 8, 2023

min read

Latest Developments in Unblob (2)

Revolutionize firmware extraction with UNBLOB! Discover the latest developments & advancements in this cutting-edge project. Don't miss latest blog post!

Leveraging ChatGPT to build a Hardware Fault Injection Tool.

Research

Apr 26, 2023

min read

Leveraging ChatGPT to build a Hardware Fault Injection Tool.

This security insight explores the process of building an AI-assisted Teensy-based fault injection framework for testing system security. Learn more here!

Security Advisory: Multiple Vulnerabilities in Phoenix Contact Routers

Research

Mar 27, 2023

min read

Security Advisory: Multiple Vulnerabilities in Phoenix Contact Routers

Authenticated users can execute arbitrary commands with elevated privileges or access any file on the system. Read the latest security advisory here!

First Conference on EU Cyber Resilience Law: CYBICS 2023 in Frankfurt Offers Expert Advice

Blog

Mar 20, 2023

min read

First Conference on EU Cyber Resilience Law: CYBICS 2023 in Frankfurt Offers Expert Advice

Expert guidance on EU Cyber Resilience Act compliance at 7. CYBICS! Don't miss key topics like IoT/ICS/OT product cybersecurity from prominent speakers.

Ready to automate your Product Cybersecurity & Compliance?

Make cybersecurity and compliance efficient and effective with ONEKEY.

Book a Demo

Onekey resources

Featured resources

TACKLING SOFTWARE SUPPLY CHAIN RISKS WITH IEC 62443 AND SBOM

Security Advisory: Arbitrary Command Execution on TP-Link Archer C5400X

The X in XFTP Stands For eXecute

German Startup Cup goes to Cyber Resilience Specialist ONEKEY

Product Cybersecurity Platform ONEKEY recognised as One of the Top Ten Solutions for Software Composition Analysis

All resources

Making TOCTOU Great again - X(R)IP

Product Cybersecurity Platform ONEKEY recognised as One of the Top Ten Solutions for Software Composition Analysis

Security Advisory: Clock Fault Injection on Mocor OS - Password Bypass

German Startup Cup goes to Cyber Resilience Specialist ONEKEY

Security Advisory: Unauthenticated Remote Command Execution in Multiple WAGO Products

Latest Developments in Unblob (2)

Leveraging ChatGPT to build a Hardware Fault Injection Tool.

Security Advisory: Multiple Vulnerabilities in Phoenix Contact Routers

First Conference on EU Cyber Resilience Law: CYBICS 2023 in Frankfurt Offers Expert Advice

Ready to automate your Product Cybersecurity & Compliance?