We help device and hardware manufacturers meet the Cyber Resilience Act requirements. Firmware analysis, vulnerability monitoring, reporting — without a security team.
The Cyber Resilience Act changes the rules for every manufacturer of products with software in the EU.
The CRA requires MANUFACTURERS — not IT companies — to ensure the cybersecurity of their products. If your device contains software and is sold on the EU market, from September 2026 you must report vulnerabilities within 24 hours.
Up to EUR 15 million or 2.5% of global annual turnover. Non-compliant products can be completely withdrawn from the EU market. The penalty targets the manufacturer — that means you.
Most manufacturers do not have a cybersecurity team. But the CRA requires it. Our tool is your virtual compliance department — it monitors, analyses and reports for you.
The CRA covers anyone who manufactures, imports or sells products with software on the EU market — even if they don’t write the code themselves.
Designed for manufacturers, not developers. CRAready automates the hardest aspects of Cyber Resilience Act compliance.
Upload your product’s firmware. We’ll automatically detect all software components — even without access to source code. No need to ask your OEM supplier for an SBOM — we’ll generate it from the binary file.
We monitor vulnerability databases 24/7 — NVD, CISA KEV, GitHub Advisories, OSV. When a threat appears for a component in your product — you’ll know immediately. No need to hire a security specialist.
When an actively exploited vulnerability is detected, you’ll receive a ready-made ENISA report with a countdown timer. 80% pre-filled automatically. Early warning (24h), full notification (72h) and final report (14 days) — with a single click.
Check the CRA status of each product on a single screen. Just as you track CE marking — now track cybersecurity. A clear dashboard with colours: green = compliant, red = action required.
Three simple steps. You don’t need to be a developer or a cybersecurity specialist.
You don’t need to be a developer. Upload a firmware file (.bin, .hex, .img) — we’ll take care of the rest. You can also connect a code repository if you have one. In both cases we’ll automatically generate a full SBOM.
You’ll get a full list of software components and the security status of each one. Understandable even without technical knowledge — with colours, priorities and simple recommendations.
Continuous monitoring and ready-made reports. When action is required — we’ll notify you and tell you exactly what to do. Zero stress, zero surprises at audit time.
Choose a plan matched to the number of products in your portfolio. All plans include full CRA support.
For small manufacturers and hardware start-ups
For manufacturers with multiple products
For manufacturers with a broad portfolio
For OEM brands and large importers
Don’t wait until the last minute. September 2026 will come sooner than you think.