Skip to content

Global Search

Summary

Use the Global search function to find files, strings, components, CVEs, and artifacts in all of your uploaded firmware. On each page, you can export the search results and save the current filters.

Search in menu

To use the Global search function, select a page under the Search in tab in the top menu bar. To search for an item, simply use the search bar on any of the pages.

Search bar

Once you have the results, you can group them by clicking on the Folder icon next to a column's name. For instance, on the Components page, you can group your findings based on the firmware in which they were identified.

Pages

Files & Strings

Here you can search in...
  • File names
  • File paths
  • File content
  • Binary symbols
  • Imported functions
  • Exported functions

There are two search modes available:

  • Equals: lists exact matches only.
  • Contains: lists both exact and partial matches.

Note

When using the 'contains' search mode, the matching section is highlighted under the Match column.

Components

Select a component to open the Component details popup. Here you can see,

  • some basic information about the component (Overview tab),
  • the files it contains (Files tab),
  • the CVEs found (CVEs tab),
  • and a list of items that indicate the methods and sources used in identifying the selected component (Evidences tab).

Note

Component editing is not available on the Global components page.

CVE count

To see the CVEs found in a specific component, enable the CVE count column. To do so, click on the button (under the 'Choose from saved filters' dropdown) and select CVE count.

Hover over a section of the CVE severity index (the colored bar) to see how many CVEs ONEKEY has found in that category.

Warning

Depending on the number of detected components, loading times may be longer when opening the Global components page.

CVEs

On this page, you can list CVEs belonging to a specific component or search for a specific CVE with its CVE ID. By default, the table shows up empty. Select a component from the dropdown to see the matching CVEs. You can also search with partial IDs.

The ONEKEY platform uses automated impact assessment and can decide whether a CVE is relevant for a specific firmware or not. To use this feature, make sure the Show only confirmed matching CVEs checkbox is selected. To view all CVE findings, deselect this checkbox. See CVE matching to learn more.

Success

When enabling or disabling automated impact assessment, make sure to rerun the search to apply the changes.

Use the menu to add/remove data columns.

Artifacts

Here you can see the certificates, private keys, and passwords found in all your uploaded firmware.

Use the top search bar to search in all three categories. To search within a specific page, use the search bar located at the top of the tables.

Export results

On any of the four pages, click on the Export ... button near the search bar to export your results.

Info

Results can be downloaded in CSV and JSON formats.

Save current filters

On each page, you can save the current filters by clicking Save current filters. To use a saved filter, select it from the Choose from saved filters dropdown.