End-of-Life (EOL) software are any software the creator has stopped selling, supporting, and patching. This means that they will no longer receive any security patches. Even if there are critical vulnerabilities. They may also be referred as End-of-Support (EOS) software
We generate CycloneDX SBOMs from your container images at build.
See all your end-of-life (EOL) and outdated software from OS to open source libraries.
PCI DSS 4.0. Meet upcoming PCI DSS 4.0 12.3.4 by having an EOL software management program in place
FedRAMP. Meet FedRAMP compliance by identifying and patching EOL software with critical vulnerabilities
HIPAA. Meet HIPAA 164.308(a)(1)(ii)(B) by eliminating the vulnerabilities that will exist forever in your EOL software
Push our EOL data to your own dashboard to centralize your security posture in one place
Integrate directly with our standardized, high quality EOL database
Apache 2.0. Get started for free or audit our CLI tool as you see fit. Contribute to it as well!
CI/CD Agnostic. Integrates into CircleCI, Jenkins, GitHub, Azure DO, GitLab, etc.
Agentless. Your security team can start using Xeol without unlocking engineering resources.