v0.1.0

Discover Cryptographic Risks. From Your Terminal.

qtz-discovery-cli scans source code, network endpoints, and cloud infrastructure for quantum-vulnerable cryptography — and outputs a CycloneDX CBOM in seconds.

View quickstart guide →

Download for your platform

Install via terminal

$ curl -fsSL https://quantizant.io/downloads/install.sh | sh

or download the binary below

Linux x86_64

x86_64 (amd64)

35.1 MB

Download Binary

qtz-discovery-cli-linux-amd64

sha256: loading…

Also available:

Linux ARM64 ↓

v0.1.0 · Released 2026-04-27

Scan your crypto attack surface. One tool.

Cover your entire cryptographic attack surface from a single CLI command.

Source Code Scan

SAST + SCA across 20+ languages. Detects hardcoded keys, weak algorithms, and vulnerable crypto libraries.

Network Scan

TLS/SSH endpoint analysis. Grades ciphers, detects deprecated protocols, checks quantum-safe key exchange.

Cloud Scan

Inventories AWS KMS, GCP KMS, Azure Key Vault, and HashiCorp Vault for key age, rotation, and algorithm.

CBOM Output

CycloneDX 1.7-compliant Cryptographic Bill of Materials. Also exports SARIF, JSON, CSV, and dashboard.

QUICK START

From install to CBOM in 3 steps.

Full quickstart guide →

Install

macOS / Linux

$ curl -fsSL https://quantizant.io/downloads/install.sh | sh

Windows (PowerShell)

$ irm https://quantizant.io/downloads/install.ps1 | iex

Scan

$ qtz-discovery-cli scan source ./my-repo --format dashboard

View Report

$ qtz-discovery-cli report summary cbom.json

NEED MORE?

The CLI is your starting point.

The Quantizant portal adds AI risk scoring, a hybrid classical + PQC transition sidecar, governance reporting, and team collaboration — all without changing your application code.

Go to Portal → Request Access