Checkmarx Open Source

Reviewpad (part of Snyk) @reviewpad

over 2 years ago

Coming to #BHEU? Take this one-of-a-kind opportunity to learn about 2MS, the connection to #softwaresupplychain attacks & every developer's responsibility from our leading #supplychainsecurity experts @ZackZoren & @jossefharush. Learn more: https://t.co/O3OOXS5pN1 #AppSec

Checkmarx's tweet photo. Coming to #BHEU? Take this one-of-a-kind opportunity to learn about 2MS, the connection to #softwaresupplychain attacks & every developer's responsibility from our leading #supplychainsecurity experts @ZackZoren & @jossefharush.
Learn more: https://t.co/O3OOXS5pN1
#AppSec https://t.co/HuvpwiOiYb

0

1

0

172

CheckmarxOSS retweeted

Checkmarx Zero

@CheckmarxZero

over 2 years ago

The OpenSSF Package Analysis team just dropped a game-changer in the fight against cyber threats by introducing the Malicious Packages repository. https://t.co/5nzLu2aQtC #openssf #opensource #maliciouspackages #supplychainsecurity

1

137

CheckmarxOSS retweeted

about 3 years ago

Save the date: DevToolsPorto_ is back on April 21st, with João Reigota from @Checkmarx, speaking about Kics 📷 Come join us!

1

3

2

0

360

Who to follow

codefromthecrypt

@adrianfcole

bringing code from the dead, so it can kill me work version of me is adrianfcole on linkedin

AppSec Village™

@AppSec_Village

AppSec Village @DEFCON & @RSAConference A volunteer-run, non-profit focused on education, awareness, and community. Founded by @erezyalon and @tzionit411.

Checkmarx is how the world’s largest enterprises can finally get ahead of application risk without slowing down development.

CheckmarxOSS retweeted

about 3 years ago

Have you checked out Checkmarx c{api}tal – our built-to-be-vulnerable #API app based on the @OWASP top 10 API vulnerabilities? Use it to learn, train & exploit #APISecurity vulnerabilities within your own API Security CTF: https://t.co/o2WmxZY6MA #CheckmarxSecurity

1

4

2

0

393

CheckmarxOSS retweeted

over 3 years ago

KICS, our #IaC security open source project, is participating in #Hacktoberfest2022. If you're a Golang developer or a #softwaresecurity specialist - look at the issues we're tagged for the event or create your own improvements. #CheckmarxSecurity #OpenSource

Checkmarx's tweet photo. KICS, our #IaC security open source project, is participating in #Hacktoberfest2022. If you're a Golang developer or a #softwaresecurity specialist - look at the issues we're tagged for the event or create your own improvements.

#CheckmarxSecurity #OpenSource https://t.co/LbvAZS1BMv

1

10

6

0

over 3 years ago

Our 4th kics community meeting is just around the corner! September 22nd at 15h00 UTC+0 Where: https://t.co/5SdhZIGBSU In this session we will - Discuss about our preparation for HacktoberFest - Discuss about Github Action migration to 1.6 - Hear your feedback on version 1.6.0

0

CheckmarxOSS retweeted

over 3 years ago

The third KICS #OpenSource community meeting is today, at 2:30PM UTC. Don’t miss: https://t.co/Iacp6FuFsd Agenda: ✔️Initial plans for KICS 1.6.1 ✔️Preparation for HacktoberFest ✔️Issues we're currently working on ✔️Hear your feedback #CheckmarxSecurity #AppSec #DevSecOps #IaC

Checkmarx's tweet photo. The third KICS #OpenSource community meeting is today, at 2:30PM UTC. Don’t miss: https://t.co/Iacp6FuFsd
Agenda:
✔️Initial plans for KICS 1.6.1
✔️Preparation for HacktoberFest
✔️Issues we're currently working on
✔️Hear your feedback
#CheckmarxSecurity #AppSec #DevSecOps #IaC https://t.co/YPgld3H2A3

1

3

2

0

almost 4 years ago

IaC scans with KICS at Visual Studio @code

Jossef Harush Kadouri @jossefharush

almost 4 years ago

Get ready to secure your #infrastructurecode. Explore a robust #applicatonsecurity approach with @bendet_ori. Attend @MSFTReactor’s upcoming Visual Studio Code: Extension Extravaganza 2022: https://t.co/mmztzGoqa6 #CheckmarxSecurity #IaC #DevSecOps @dailydotdev

0

4

1

0

2

0

CheckmarxOSS retweeted

almost 4 years ago

It's Saturday and our systems detected a large-scale attack on the Python ecosystem with multi-stage persistent malware https://t.co/tWStI1aV8x #supplychainsecurity #malware #python #research #supplychain #github #pypi

jossefharush's tweet photo. It's Saturday and our systems detected a large-scale attack on the Python ecosystem with multi-stage persistent malware

https://t.co/tWStI1aV8x

#supplychainsecurity #malware #python #research #supplychain #github #pypi https://t.co/cKkTeRbSqk

2

4

6

0

Abhinav Sejpal @AbhinavSejpal

about 4 years ago

@matthieurobin @MicheeLengronne Calico isn't supported (yet). We'll be happy if you open a bug / feature request about it. https://t.co/HhaRrscSpJ We have a discussios thread about requests for upcoming version 1.6.

0

3

1

0

CheckmarxOSS retweeted

over 4 years ago

IMO, #Kics is one of the best #Iac open source solution. https://t.co/Jm0kZMvx3m

1

8

1

0

about 4 years ago

@Cloud_Breach Happy to see you're using kics, we'd appreciate a GitHub star after you learned about IaC misconfigurations. Notice we just released 1.5.8 last week, which has many more checks comparing to 1.4.x versions (along some new features).

0

1

0

CheckmarxOSS retweeted

CloudBreach

@Cloud_Breach

about 4 years ago

#BreachingAzure Lab: Learn how to use #kics tool and identify misconfiguration in #Terraform Infrastructure as Code solution. #IaC #Kubernetes #CloudSecurity #CloudBreach #RedTeam #AzureSecurity #AKS #DevSecOps #DevOps #BlueTeam #Azure https://t.co/p84e4xcVd9

1

11

4

0

CheckmarxOSS retweeted

about 4 years ago

KICS is simple to install, run, and integrate into your CI, and it’s free. Maybe that’s why it crossed 600k downloads and reached 1000 @github stars, and is still growing. Find out more about it: https://t.co/wFUPxSktmV #CheckmarxSecurity #opensource #appsec @CheckmarxOSS

Checkmarx's tweet photo. KICS is simple to install, run, and integrate into your CI, and it’s free. Maybe that’s why it crossed 600k downloads and reached 1000 @github stars, and is still growing.
Find out more about it: https://t.co/wFUPxSktmV

#CheckmarxSecurity #opensource #appsec @CheckmarxOSS https://t.co/SWgqk75aEy

1

6

5

1

0

CheckmarxOSS retweeted

about 4 years ago

Just because a code package is "popular," that doesn't mean it's credible. Learn about #StarJacking in this @CRN article and #CheckmarxSecurity: https://t.co/vxfjWJ7XrG

0

3

0

CheckmarxOSS retweeted

about 4 years ago

KICS allows you to set API security standards for your organization and enforce them through IaC scanning, without slowing down your software delivery pipeline. Learn more about this free download: https://t.co/EKQ4V7tXox #CheckmarxSecurity #opensource #appsec @CheckmarxOSS

Checkmarx's tweet photo. KICS allows you to set API security standards for your organization and enforce them through IaC scanning, without slowing down your software delivery pipeline.
Learn more about this free download: https://t.co/EKQ4V7tXox

#CheckmarxSecurity #opensource #appsec @CheckmarxOSS https://t.co/AJV8Zdqo4K

0

5

2

0

CheckmarxOSS retweeted

about 4 years ago

The latest sneak attack on the trust in the #opensource security world is #StarJacking - a technique for making a package look more popular than it is. Read the latest discovery by @ZackZoren @jossefharush & Aviad Gershon here https://t.co/d6JCgFFEAt #AppSec #Opensourcesecurity

0

9

5

0

CheckmarxOSS retweeted

about 4 years ago

Checkmarx is closely monitoring #Spring4Shell and all other Spring vulnerabilities (CVE-2022-22963, CVE-2022-22950). Checkmarx SCA customers can scan their code for those vulnerabilities and get the latest remediation solutions. #springshell https://t.co/q8lIlziA7U

1

6

5

0

CheckmarxOSS retweeted