Checkmarx

All

49 repositories

ast-cli
Public
A CLI project wrapping application security testing (AST) APIs
ast checkmarx checkmarx-ast cli
Go
•
Apache License 2.0
•25•44•6•10•Updated Jan 10, 2025Jan 10, 2025
sast-to-ast-export
Public
CLI tool to export data from CxSAST and import into Checkmarx Application Security Testing Platform
security application ast sast
Go
•
Apache License 2.0
•6•3•5•2•Updated Jan 10, 2025Jan 10, 2025
gen-ai-prompts
Public
Remediate SAST results using AI
Go
•0•2•2•0•Updated Jan 9, 2025Jan 9, 2025
ast-vscode-extension
Public
The Checkmarx One Visual Studio Code plugin (extension) enables you to import results from a Checkmarx One scan directly into your VS Code console. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
security vscode-extension checkmarx checkmarx-ast
Hack
•
Apache License 2.0
•6•11•7•19•Updated Jan 9, 2025Jan 9, 2025
ast-visual-studio-extension
Public
The CxAST Visual Studio plugin enables you to import results from a CxAST scan directly into your IDE
security visual-studio-extension checkmarx visual-studio-2022 checkmarx-ast
C#
•
Apache License 2.0
•6•2•3•7•Updated Jan 9, 2025Jan 9, 2025
ast-jetbrains-plugin
Public
The CxAST JetBrains plugin enables you to import results from a CxAST scan directly into your IDE.
security jetbrains-plugin checkmarx checkmarx-ast
Java
•
Apache License 2.0
•3•3•0•11•Updated Jan 7, 2025Jan 7, 2025
containers-resolver
Public
Go
•0•0•0•0•Updated Jan 7, 2025Jan 7, 2025
containers-syft-packages-extractor
Public
Go
•0•0•0•0•Updated Jan 7, 2025Jan 7, 2025
ast-teamcity-plugin
Public
The CxAST TeamCity plugin enables you to trigger SAST, SCA, and KICS scans directly from a TeamCity project.
security teamcity-plugin checkmarx checkmarx-ast
Java
•
Apache License 2.0
•2•3•1•9•Updated Jan 7, 2025Jan 7, 2025
ast-azure-plugin
Public
The CxAST Azure DevOps plugin enables you to trigger SAST, SCA, and KICS scans directly from an Azure DevOps pipeline.
security security-tools azure-devops-extension checkmarx checkmarx-ast
TypeScript
•
Apache License 2.0
•5•4•4•12•Updated Jan 6, 2025Jan 6, 2025
ast-github-action
Public
Checkmarx application security testing (AST) GitHub action
security github-actions checkmarx checkmarx-ast
Shell
•
Apache License 2.0
•24•16•13•3•Updated Dec 31, 2024Dec 31, 2024
ast-eclipse-plugin
Public
The CxAST Eclipse plugin enables you to import results from a CxAST scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.
security eclipse-plugin checkmarx checkmarx-ast
Java
•
Apache License 2.0
•9•4•0•2•Updated Dec 31, 2024Dec 31, 2024
homebrew-ast-cli
Public
Ruby
•0•2•0•0•Updated Dec 31, 2024Dec 31, 2024
gen-ai-wrapper
Public
Go
•
Apache License 2.0
•0•0•1•6•Updated Dec 30, 2024Dec 30, 2024
2ms
Public
Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git
security secret-management secrets appsec secret-keys api-keys
Go
•
Apache License 2.0
•18•83•32•1•Updated Dec 18, 2024Dec 18, 2024
ast-cli-maven-plugin
Public
A Maven plugin for using the AST CLI in Maven lifecycle phases
Java
•
Apache License 2.0
•0•0•0•9•Updated Dec 9, 2024Dec 9, 2024
containers-images-extractor
Public
Go
•0•0•0•0•Updated Dec 9, 2024Dec 9, 2024
kics
Public
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
security iac infrastructure-as-code cloudnative appsec vulnerability-detection hacktoberfest vulnerability-scanners security-tools open-policy-agent
Open Policy Agent
•
Apache License 2.0
•315•2.1k•123•65•Updated Dec 9, 2024Dec 9, 2024
containers-types
Public
Go
•0•0•0•0•Updated Dec 5, 2024Dec 5, 2024
kics-cdk-validator-plugin
Public
A KICS plugin for AWS CDK
TypeScript
•
Apache License 2.0
•3•6•1•5•Updated Nov 25, 2024Nov 25, 2024
vorpal-reviewdog-github-action
Public
Run Vorpal with reviewdog 🐶
Shell
•
Apache License 2.0
•0•3•0•0•Updated Oct 10, 2024Oct 10, 2024
kics-github-action
Public
GitHub actions of KICS scan - Keeping Infrastructure as Code Secure
JavaScript
•
GNU General Public License v3.0
•33•44•10•1•Updated Oct 3, 2024Oct 3, 2024
dast-github-action
Public
Shell
•
GNU General Public License v3.0
•2•2•0•1•Updated Sep 23, 2024Sep 23, 2024
terraform-aws-cxone
Public
HCL
•5•0•1•2•Updated Aug 20, 2024Aug 20, 2024
ci-cd-integrations
Public
If you are using a CI/CD platform that doesn’t yet have a dedicated Checkmarx plugin, please check this repository.
circleci maven bitbucket ci-cd sonar bamboo-plugin checkmarx securtiy checkmarx-ast
Groovy
•
Apache License 2.0
•17•9•0•2•Updated Jul 3, 2024Jul 3, 2024
Goatlin
Public
(aka Kotlin Goat) - an intentionally vulnerable Kotlin application
Kotlin
•
GNU General Public License v3.0
•135•33•0•7•Updated Apr 17, 2024Apr 17, 2024
capital
Public
A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
ctf vulnerable-web-app apisecurity
CSS
•
GNU Affero General Public License v3.0
•71•280•4•13•Updated Apr 12, 2024Apr 12, 2024
gitleaks
Public
Protect and discover secrets using Gitleaks 🔑
Go
•
MIT License
•1.5k•0•0•1•Updated Mar 31, 2024Mar 31, 2024
overlay
Public
Overlay is a browser extension helping developers evaluate open source packages before picking them
JavaScript
•
MIT License
•19•1•0•0•Updated Feb 21, 2024Feb 21, 2024
nexus-security-plugin
Public
Java
•
Apache License 2.0
•1•2•0•0•Updated Jul 26, 2023Jul 26, 2023