@checkmarx Open Source Program Office.
Joined June 2021
- Tweets 42
- Following 449
- Followers 92
- Likes 77
2 Photos and videos
Checkmarx Open Source retweeted
16 Jan 2024
3 Million Downloads – What a milestone!
KICS is a free, #opensource solution for static code analysis of IaC developed by Checkmarx and the open source community. Download now: hubs.ly/Q02gyr3j0
#CheckmarxSecurity #IAC #ApplicationSecurity #DevSecOps
2
6
217
Checkmarx Open Source retweeted
4 Dec 2023
Coming to #BHEU? Take this one-of-a-kind opportunity to learn about 2MS, the connection to #softwaresupplychain attacks & every developer's responsibility from our leading #supplychainsecurity experts @ZackZoren & @jossefharush.
Learn more: bit.ly/3uPvBMN
#AppSec
1
172
Checkmarx Open Source retweeted
15 Oct 2023
The OpenSSF Package Analysis team just dropped a game-changer in the fight against cyber threats by introducing the Malicious Packages repository.
openssf.org/blog/2023/10/12/…
#openssf #opensource #maliciouspackages #supplychainsecurity
1
1
1
137
Checkmarx Open Source retweeted
10 Apr 2023
Save the date: DevToolsPorto_ is back on April 21st, with João Reigota from @Checkmarx, speaking about Kics 📷 Come join us!
1
2
3
360
Checkmarx Open Source retweeted
8 Mar 2023
Have you checked out Checkmarx c{api}tal – our built-to-be-vulnerable #API app based on the @OWASP top 10 API vulnerabilities?
Use it to learn, train & exploit #APISecurity vulnerabilities within your own API Security CTF: bit.ly/3ZuWCPR
#CheckmarxSecurity
1
2
4
393
Checkmarx Open Source retweeted
13 Oct 2022
KICS, our #IaC security open source project, is participating in #Hacktoberfest2022. If you're a Golang developer or a #softwaresecurity specialist - look at the issues we're tagged for the event or create your own improvements.
#CheckmarxSecurity #OpenSource
1
6
10
22 Sep 2022
Our 4th kics community meeting is just around the corner!
September 22nd at 15h00 UTC 0
Where: checkmarx.zoom.us/j/84701317…
In this session we will
- Discuss about our preparation for HacktoberFest
- Discuss about Github Action migration to 1.6
- Hear your feedback on version 1.6.0
Checkmarx Open Source retweeted
8 Sep 2022
The third KICS #OpenSource community meeting is today, at 2:30PM UTC. Don’t miss: bit.ly/3QFgawh
Agenda:
✔️Initial plans for KICS 1.6.1
✔️Preparation for HacktoberFest
✔️Issues we're currently working on
✔️Hear your feedback
#CheckmarxSecurity #AppSec #DevSecOps #IaC
1
2
3
22 Aug 2022
IaC scans with KICS at Visual Studio @code
22 Aug 2022
Get ready to secure your #infrastructurecode. Explore a robust #applicatonsecurity approach with @bendet_ori. Attend @MSFTReactor’s upcoming Visual Studio Code: Extension Extravaganza 2022: bit.ly/3c94zXS
#CheckmarxSecurity #IaC #DevSecOps @dailydotdev
2
2
Checkmarx Open Source retweeted
13 Aug 2022
It's Saturday and our systems detected a large-scale attack on the Python ecosystem with multi-stage persistent malware
pypi.org/user/devfather777
#supplychainsecurity #malware #python #research #supplychain #github #pypi
2
6
4
Checkmarx Open Source retweeted
10 Feb 2022
1
1
8
Checkmarx Open Source retweeted
13 May 2022
#BreachingAzure Lab: Learn how to use #kics tool and identify misconfiguration in #Terraform Infrastructure as Code solution. #IaC #Kubernetes #CloudSecurity #CloudBreach #RedTeam #AzureSecurity #AKS #DevSecOps #DevOps #BlueTeam #Azure cloudbreach.io/
1
4
11
Checkmarx Open Source retweeted
11 May 2022
KICS is simple to install, run, and integrate into your CI, and it’s free. Maybe that’s why it crossed 600k downloads and reached 1000 @github stars, and is still growing.
Find out more about it: bit.ly/3shaTSd
#CheckmarxSecurity #opensource #appsec @CheckmarxOSS
1
5
6
Checkmarx Open Source retweeted
29 Apr 2022
Just because a code package is "popular," that doesn't mean it's credible.
Learn about #StarJacking in this @CRN article and #CheckmarxSecurity: bit.ly/3s0S7Ox
3
3
Checkmarx Open Source retweeted
28 Apr 2022
KICS allows you to set API security standards for your organization and enforce them through IaC scanning, without slowing down your software delivery pipeline.
Learn more about this free download: bit.ly/3KeCvxo
#CheckmarxSecurity #opensource #appsec @CheckmarxOSS
2
5
Checkmarx Open Source retweeted
19 Apr 2022
The latest sneak attack on the trust in the #opensource security world is #StarJacking - a technique for making a package look more popular than it is. Read the latest discovery by @ZackZoren
@jossefharush & Aviad Gershon here cutt.ly/HF3YKtQ #AppSec #Opensourcesecurity
5
9
Checkmarx Open Source retweeted
31 Mar 2022
Checkmarx is closely monitoring #Spring4Shell and all other Spring vulnerabilities (CVE-2022-22963, CVE-2022-22950). Checkmarx SCA customers can scan their code for those vulnerabilities and get the latest remediation solutions. #springshell bit.ly/3IVeryI
1
5
6
Checkmarx Open Source retweeted
9 Feb 2022
Introducing ChainAlert, to continuously monitor new open source activities and help minimize the damages from future attacks by closing the gap between takeover – to detection and mitigation.
Read more in our blog post here: bit.ly/3B8tItI
#opensource #npm
3
3
Checkmarx Open Source retweeted
30 Dec 2021
💡Steer clear of #IaC misconfigurations and new attack vectors in 2022!
👨💻 @bendet_ori Head of Product Management, SAST & Engines at Checkmarx, analyzed an extensive number of #KICS scans and developed a list of the top 5 to check off your list 👇
bit.ly/3HnwDkc
2
3
Checkmarx Open Source retweeted
21 Dec 2021
Some good #log4j news!
The fix for CVE-2021-45105 for Java7 users will be available soon in V2.12.3.
Even better news for Java6 users, since they will be getting their fix for all presently known log4j vulnerabilities in V2.3.1 soon.
bit.ly/3EeYe5b
#opensource
4
5