logo-white (1)
Back
Logo-5
  • Checkmarx Zero

  • Research

  • Vulnerabilities

  • Tools

  • Disclosure Policy

Report Vulnerability
  • Checkmarx Zero
  • Research

Research Resources

Whether it's driven by curiosity or hunting for Zero Days, we research continuously to gain knowledge, share it, and protect the ecosystem.

June 11, 2026
Proof, Not Promises: How We Drive Security Testing Accuracy With Better Data 
Claims of security testing accuracy are often the result of inexpensive testing methods that produce results intended to tell a marketing story. But when you…
Read Now
June 25, 2026
Operation Navy Ghost: How Attackers Planted a Telegram-Powered Backdoor Across Fake pyrogram Packages on PyPI
A threat actor targeted Telegram bot developers adopting the popular 'pyrogram' package on PyPI over the course of six months starting November 2025, in…
Read Now

All resources

Applied Filters:

June 16, 2026
ChainVeil: A Malicious npm Supply Chain Attack by SuccessKey
Read More
May 12, 2026
OverDoS: Taking Down Over 70,000 n8n Instances
Read More
April 7, 2026
Same Origin, Same Tricks: Bypassing n8n’s CSP Sandbox (CVE-2026-27578)
Read More
April 2, 2026
Rapid Exploitation and Clever Malware in the Supply Chain, Last Week In AppSec (2026-04-02)
Read More
March 23, 2026
GlassWorm Targets Developer IDEs Again, Hiding Staged Malware Behind Runtime-Rebuilt Loaders
Read More
March 5, 2026
Unearned Confidence: AI Security Reviewers Don’t Really Get It
Read More
March 5, 2026
AI fights and more attacks on dev infrastructure: Last Week in AppSec for 4. March 2026
Read More
February 26, 2026
Last Week in AppSec for 26. February 2026
Read More
February 25, 2026
Learning About LLM-Based Zero-Day Hunting with Claude Code’s Opus 4.6
Read More
Show more

Stay connected and never miss a research update!

Contact us
Mask group ICONS ICONS (1) ICONS (2) ICONS (3)

Trusted by

logo-citi
logo-cisco
logo-accenture
logo-wipro

Awards & Recognition

logo-cyber-2021
logo-gartner
logo-cyber-2022
logo-dev-insider

Checkmarx One is an application security software platform built to help enterprises secure every stage of the SDLC while reducing engineering costs and accelerating development. As a leader in agentic application security testing, Checkmarx scans trillions of lines of code each year, helping organizations cut vulnerability density by more than half. Its autonomous security agents detect, prioritize, and counter AI-driven threats across legacy, modern, and AI-generated code at enterprise scale.

Follow us

  • icon-x
  • icon-yb
  • icon-ln
  • icon-fb
  • Platforms
    • Checkmarx One Platform
    • Triage & Remediation Assist
    • Checkmarx One Assist
    • Checkmarx One Developer Assist
    • NG SAST
    • DAST
    • SCA
    • API Security
    • ASPM
    • Container Security
    • IaC Security
    • Secrets Detection
    • Repository Health
    • Malicious Package Protection
    • MPIAPI
    • Codebashing
  • Solutions
    • AI Supply Chain Security
    • AI-BOM
    • Code to Cloud
    • Developer Experience
    • DevSecOps
    • Software Supply Chain Security
    • SBOM
  • On Premises
    • On-prem SAST
  • Services
    • Premium Services
    • Support
    • Maturity Assessment
  • Resources
    • Checkmarx One Packages
    • AppSec Knowledge Hub
    • Company Blog
    • Customer Testimonials
    • Documentation
    • Whitepapers & Reports
    • Events
    • Glossary
    • Videos
    • Webinars
    • Resources
  • Compare To
    • Fortify
    • GitHub
    • Snyk
    • Black Duck (Synopsys)
    • Veracode
    • SemGrep
    • Wiz
    • Endor Labs
  • Industry Solutions
    • Healthcare
    • Insurance
    • Public Sector
    • Global Capability Centers
    • Life Sciences
    • Technology
  • Company
    • About Us
    • Trust & Security
    • Awards
    • Leadership
    • News
    • Press Releases
    • Careers
    • Our Company
  • Connect
    • Contact Us
    • Support Portal

©2026 Checkmarx Ltd. All Rights Reserved. iISO/IEC 27001:2013 Certified

  • Privacy Policy
  • Terms of Use