Skip to content
@Checkmarx

Checkmarx

Pinned Loading

  1. kics kics Public

    Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

    Open Policy Agent 2.1k 314

  2. 2ms 2ms Public

    Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git

    Go 82 18

  3. capital capital Public

    A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.

    CSS 276 67

  4. ci-cd-integrations ci-cd-integrations Public

    If you are using a CI/CD platform that doesn’t yet have a dedicated Checkmarx plugin, please check this repository.

    Groovy 7 16

Repositories

Showing 10 of 46 repositories
  • kics Public

    Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

    Checkmarx/kics’s past year of commit activity
    Open Policy Agent 2,106 Apache-2.0 314 115 64 Updated Dec 1, 2024
  • ast-visual-studio-extension Public

    The CxAST Visual Studio plugin enables you to import results from a CxAST scan directly into your IDE

    Checkmarx/ast-visual-studio-extension’s past year of commit activity
    C# 2 Apache-2.0 6 3 7 Updated Nov 29, 2024
  • ast-jetbrains-plugin Public

    The CxAST JetBrains plugin enables you to import results from a CxAST scan directly into your IDE.

    Checkmarx/ast-jetbrains-plugin’s past year of commit activity
    Java 3 Apache-2.0 3 0 8 Updated Nov 28, 2024
  • ast-cli Public

    A CLI project wrapping application security testing (AST) APIs

    Checkmarx/ast-cli’s past year of commit activity
    Go 41 Apache-2.0 25 5 10 Updated Nov 28, 2024
  • ast-azure-plugin Public

    The CxAST Azure DevOps plugin enables you to trigger SAST, SCA, and KICS scans directly from an Azure DevOps pipeline.

    Checkmarx/ast-azure-plugin’s past year of commit activity
    TypeScript 4 Apache-2.0 4 3 12 Updated Nov 27, 2024
  • 2ms Public

    Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git

    Checkmarx/2ms’s past year of commit activity
    Go 82 Apache-2.0 18 32 (2 issues need help) 2 Updated Nov 26, 2024
  • gen-ai-prompts Public

    Remediate SAST results using AI

    Checkmarx/gen-ai-prompts’s past year of commit activity
    Go 1 0 1 0 Updated Nov 26, 2024
  • ast-cli-maven-plugin Public

    A Maven plugin for using the AST CLI in Maven lifecycle phases

    Checkmarx/ast-cli-maven-plugin’s past year of commit activity
    Java 0 Apache-2.0 0 0 9 Updated Nov 25, 2024
  • kics-cdk-validator-plugin Public

    A KICS plugin for AWS CDK

    Checkmarx/kics-cdk-validator-plugin’s past year of commit activity
    TypeScript 6 Apache-2.0 3 1 5 Updated Nov 25, 2024
  • ast-eclipse-plugin Public

    The CxAST Eclipse plugin enables you to import results from a CxAST scan directly into your IDE. You can view the vulnerabilities that were identified in your source code and navigate directly to the vulnerable code in the editor.

    Checkmarx/ast-eclipse-plugin’s past year of commit activity
    Java 4 Apache-2.0 9 0 3 Updated Nov 25, 2024