Checkmarx

Pinned Repositories

2ms
Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
Language:Go82 5 10418
ast-cli
A CLI project wrapping application security testing (AST) APIs
Language:Go41 12 2525
capital
A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
Language:CSS275 6 567
chainalert-github-action
scans popular packages and alerts in cases there is suspicion of an account takeover
Language:JavaScript41 8 515
chainjacking
Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
Language:Python56 7 015
ci-cd-integrations
If you are using a CI/CD platform that doesn’t yet have a dedicated Checkmarx plugin, please check this repository.
Language:Groovy7 7 016
dustilock
DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
Language:Go36 2 47
JS-SCP
JavaScript Secure Coding Practices guide
178 20 436
kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Language:Open Policy Agent2.1k 27 2k314
kics-github-action
GitHub actions of KICS scan - Keeping Infrastructure as Code Secure
Language:JavaScript43 3 3933

Checkmarx's Repositories

Checkmarx/kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Language:Open Policy Agent2.1k 27 2k314
Checkmarx/capital
A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
Language:CSS275 6 567
Checkmarx/2ms
Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
Language:Go82 5 10418
Checkmarx/kics-github-action
GitHub actions of KICS scan - Keeping Infrastructure as Code Secure
Language:JavaScript43 3 3933
Checkmarx/ast-cli
A CLI project wrapping application security testing (AST) APIs
Language:Go41 12 2525
Checkmarx/Goatlin
(aka Kotlin Goat) - an intentionally vulnerable Kotlin application
Language:Kotlin33 4 0127
Checkmarx/cuteboi
This open-source project tracks CuteBoi's activity over time as there are evidence the actor is still active. All information provided here is intended for research purposes.
Language:Vue28 6 15
Checkmarx/ast-github-action
Checkmarx application security testing (AST) GitHub action
Language:Shell16 9 3523
Checkmarx/ast-vscode-extension
The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
Language:Hack11 5 236
Checkmarx/red-lili
This open-source project tracks RED-LILI's activity over time as there are evidence the actor is still active. All information provided here is intended for research purposes.
Language:Vue11 5 04
Checkmarx/ci-cd-integrations
If you are using a CI/CD platform that doesn’t yet have a dedicated Checkmarx plugin, please check this repository.
Language:Groovy7 7 016
Checkmarx/kics-cdk-validator-plugin
A KICS plugin for AWS CDK
Language:TypeScript6 5 23
Checkmarx/ast-azure-plugin
The CxAST Azure DevOps plugin enables you to trigger SAST, SCA, and KICS scans directly from an Azure DevOps pipeline.
Language:TypeScript4 7 74
Checkmarx/ast-eclipse-plugin
The CxAST Eclipse plugin enables you to import results from a CxAST scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
Language:Java4 6 29
Checkmarx/ast-jetbrains-plugin
The CxAST JetBrains plugin enables you to import results from a CxAST scan directly into your IDE.
Language:Java3 7 23
Checkmarx/ast-teamcity-plugin
The CxAST TeamCity plugin enables you to trigger SAST, SCA, and KICS scans directly from a TeamCity project.
Language:Java3 7 42
Checkmarx/sast-to-ast-export
CLI tool to export data from CxSAST and import into Checkmarx Application Security Testing Platform
Language:Go3 3 56
Checkmarx/vorpal-reviewdog-github-action
Run Vorpal with reviewdog 🐶
Language:Shell30
Checkmarx/ast-visual-studio-extension
The CxAST Visual Studio plugin enables you to import results from a CxAST scan directly into your IDE
Language:C#2 4 56
Checkmarx/dast-github-action
Language:Shell2 6 02
Checkmarx/homebrew-ast-cli
Language:Ruby2 5 0
Checkmarx/nexus-security-plugin
Language:Java2 5 01
Checkmarx/gen-ai-prompts
Remediate SAST results using AI
Language:Go1 5 3
Checkmarx/overlay
Overlay is a browser extension helping developers evaluate open source packages before picking them
Language:JavaScript1 2 0
Checkmarx/artifactory-security-plugin
Language:Java0 4 01
Checkmarx/kics-github-action-demo
A demo repo to show KICS Github Action in Action
Language:Go0 6 04
Checkmarx/terraform-aws-cxone
Language:HCL0 6 15
Checkmarx/ast-cli-maven-plugin
A Maven plugin for using the AST CLI in Maven lifecycle phases
Language:Java3 0
Checkmarx/gen-ai-wrapper
Language:Go3 1
Checkmarx/gitleaks
Protect and discover secrets using Gitleaks 🔑
Language:Go1 01