Checkmarx

Pinned Repositories

2ms
Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
Language:Go137 5 11128
ast-cli
A CLI project wrapping application security testing (AST) APIs
Language:Go58 8 4427
capital
A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
Language:CSS304 6 584
chainalert-github-action
scans popular packages and alerts in cases there is suspicion of an account takeover
Language:JavaScript41 6 615
chainjacking
Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
Language:Python60 5 015
ci-cd-integrations
If you are using a CI/CD platform that doesn’t yet have a dedicated Checkmarx plugin, please check this repository.
Language:Groovy13 4 021
dustilock
DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
Language:Go40 1 57
JS-SCP
JavaScript Secure Coding Practices guide
181 19 437
kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Language:Open Policy Agent2.5k 26 2k349
kics-github-action
GitHub actions of KICS scan - Keeping Infrastructure as Code Secure
Language:JavaScript52 1 4540

Checkmarx's Repositories

Checkmarx/kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Language:Open Policy Agent2.5k 26 2k349
Checkmarx/capital
A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
Language:CSS304 6 584
Checkmarx/2ms
Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
Language:Go137 5 11128
Checkmarx/ast-cli
A CLI project wrapping application security testing (AST) APIs
Language:Go58 8 4427
Checkmarx/kics-github-action
GitHub actions of KICS scan - Keeping Infrastructure as Code Secure
Language:JavaScript52 1 4540
Checkmarx/ast-github-action
Checkmarx application security testing (AST) GitHub action
Language:Shell25 6 4335
Checkmarx/ast-vscode-extension
The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
Language:TypeScript16 3 298
Checkmarx/ci-cd-integrations
If you are using a CI/CD platform that doesn’t yet have a dedicated Checkmarx plugin, please check this repository.
Language:Groovy13 4 021
Checkmarx/gen-ai-prompts
Remediate SAST results using AI
Language:Go9 5 251
Checkmarx/kics-cdk-validator-plugin
A KICS plugin for AWS CDK
Language:TypeScript8 4 23
Checkmarx/ast-azure-plugin
The CxAST Azure DevOps plugin enables you to trigger SAST, SCA, and KICS scans directly from an Azure DevOps pipeline.
Language:TypeScript7 5 125
Checkmarx/vorpal-reviewdog-github-action
Run Vorpal with reviewdog 🐶
Language:Shell7 3 00
Checkmarx/ast-eclipse-plugin
The CxAST Eclipse plugin enables you to import results from a CxAST scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
Language:Java4 3 512
Checkmarx/sast-to-ast-export
CLI tool to export data from CxSAST and import into AST CxOne
Language:Go4 2 75
Checkmarx/ast-jetbrains-plugin
The CxAST JetBrains plugin enables you to import results from a CxAST scan directly into your IDE.
Language:Java3 4 23
Checkmarx/ast-teamcity-plugin
The CxAST TeamCity plugin enables you to trigger SAST, SCA, and KICS scans directly from a TeamCity project.
Language:Java3 4 42
Checkmarx/ast-visual-studio-extension
The CxAST Visual Studio plugin enables you to import results from a CxAST scan directly into your IDE
Language:C#2 2 76
Checkmarx/homebrew-ast-cli
Language:Ruby2 3 1
Checkmarx/containers-resolver
Language:Go1 2 01
Checkmarx/secret-detection
Language:Go1 2 0
Checkmarx/ast-cli-maven-plugin
A Maven plugin for using the AST CLI in Maven lifecycle phases
Language:Java0 3 00
Checkmarx/containers-images-extractor
Language:Go2 0
Checkmarx/containers-syft-packages-extractor
Language:Go2 01
Checkmarx/containers-types
Language:Go2 0
Checkmarx/daniel-mcp-test
Language:Go1
Checkmarx/gen-ai-wrapper
Language:Go3 2
Checkmarx/manifest-parser
Language:Go2 0
Checkmarx/Phoenix-WebGoat
Project with vulnerabilities for plugins team tests
2 01
Checkmarx/plugins-release-workflow
Automates the release workflow across all components, starting with the CLI, followed by the Wrappers, and concluding with the Plugins. This streamlined process ensures consistent and efficient deployment across the entire ecosystem.
2 0
Checkmarx/Vulnerabilities-Proofs-of-Concept
Language:JavaScript2 0