Software Composition Analysis The ultimate guide to SCA, from Checkmarx
Read E-Book
homepage
-
-
Open Source Licenses – Insights and Metrics
Every developer and organization which uses open source dependencies in their code should know what open source licenses are and what are the risks that an organization faces when using open...
Read Now
-
ESG Showcase - Comprehensive Open Source Supply Chain Security: Going Beyond SCA and SBOMs
Read Now
-
AST Platform Demo
Watch Now
-
Is Your AST Slowing You Down?
Watch Now
-
Partnering in a World of Secure Code: Mark Osmond discusses the innovative Checkmarx approach on CRNTV
The software world will always need devoted security innovators, and Checkmarx is fostering global partnerships to better meet the industry’s needs.
Read Now
-
The Case for Outsourcing AppSec Testing to a Managed Service Provider
Businesses commonly turn to managed service providers to help handle IT processes like data backup and recovery, network management, and mobility management. Here’s another key type of managed...
Read Now
-
An Introduction to Checkmarx Supply Chain Security - CHINESE SIMPLIFIED
Read Now
-
IDC Offers Commentary on Checkmarx Open Source Supply Chain Security Solution
Modern application development must address supply chain security risksSoftware Composition Analysis (SCA) tools are part of, but not the complete solutionVulnerable and malicious are two very...
Read Now
-
Static Analysis of Infrastructure as Code with Codefresh and Checkmarx
Infrastructure as Code (IaC) is the description of infrastructure (clusters, virtual machines, networking, storage, etc.) with a declarative model and its subsequent management using the same...
Read Now
-
5 Keys to Success from Checkmarx’s CRN Women of the Channel
Today CRN®, a brand of The Channel Company, announced its highly respected annual Women of the Channel list and I always look forward to seeing all of the amazing leaders who are featured each...
Read Now
-
Understanding the Development Best Practices Landscape for Modern Secure Application Development
Modern Application Development (MAD) is an approach to developing software applications using cloud-native technologies. The main idea is to leverage newer emerging tools like K8s to bootstrap...
Read Now
-
2021 Software Security in Latin America Report
Read Now
-
Attackers Target Packages in Multiple Programming Languages in Recent Software Supply Chain Attacks
Malicious packages in multiple programming languages that went undetected for years were revealed by the Checkmarx Supply Chain Security team using advanced threat hunting techniques. The fact...
Read Now
-
SCA – Behind the Curtains
IT STARTS WITH A CVE There is no doubt that NVD (National Vulnerability Database) is the go-to reference when it comes to the universe of vulnerabilities. For one thing, it is the most...
Read Now
-
10 Critical Capabilities for AST in DevOps eBook
Read Now
-
Securing the Open Source Supply Chain
Watch Now
-
[Solution Brief] AST Platform
Read Now
-
Attacker Adds Evasive Technique to Their Ongoing Attacks on NPM
Intro A few weeks ago, we wrote about a new threat actor we called RED-LILI and described their capabilities, including an in-depth walkthrough of the automated system for publishing malicious...
Read Now
-
Checkmarx Named a Leader in the 2022 Gartner® Magic Quadrant™ for Application Security Testing for the 5th Consecutive Year
Today marks the much-anticipated release of the 2022 Gartner Magic Quadrant for Application Security Testing1 (AST), and we’re thrilled to announce that Checkmarx has been named a Leader for the...
Read Now
-
Loading More...
![[Solution Brief] AST Platform](https://content.cdntwrk.com/files/aT0xNDY2MzM0JnA9MCZ2ZXJzaW9uPTEmY21kPXYmc2lnPTRlZjg4NmY2NmU5ZGJmZmVlZjJlOWNkMWNjNDBjNzVk/-w-320.jpg)
