aDolus Software Supplier Discovery

aDolus Software Supplier Discovery is a feature within the FACT (Firmware Analysis and Comparison Tool) platform that enables organizations to identify and monitor the software vendors present within their supply chain. The tool addresses scenarios where regulatory or internal policies restrict the use of software from specific vendors (e.g., country-of-origin restrictions). It analyzes software components to uncover third-party and fourth-party vendor dependencies that may be buried deep within products and equipment. Key capabilities include: **Blacklisted Vendor Identification:** - Detects forbidden or restricted vendor code embedded within software components - Identifies third-party and fourth-party supplier relationships - Maps which products and product lines use components from a specific vendor **Vendor Reputation Monitoring:** - Tracks trust scores for software and components from individual suppliers - Alerts when a supplier's trust score falls below a defined policy threshold - Prioritizes vendors that require additional management attention - Supports informed purchasing decisions based on a vendor's software trustworthiness The product is aimed at both asset owners and vendors who need visibility into their software supply chain, particularly in regulated industries such as industrial control systems (ICS) and critical infrastructure.