Checkmarx Blog

We’re excited to announce the acquisition of Codebashing!

We’re excited to announce the acquisition of Codebashing, a leading application security education platform that specializes in delivering interactive secure coding education for developers, aiming to empower developers with bite-sized interactive lessons to understand the principles of application security.   For organizations across the globe, reaching and maintaining application security is a major challenge. The increasing

Read More ›

The ABCs of AppSec Testing: IAST & DAST

As applications are being hit harder than ever with increasingly sophisticated cyberattacks, organizations are turning to application security testing solutions to keep their applications safe. And as organizations take a peek into the AppSec testing market, they are sure to see many different options. In this blog post we will take a look at two

Read More ›

An Introduction to IAST

As organizations modernize and innovate their technologies and flows, traditional Dynamic Application Security Testing (DAST) is being considered a big setback for one big reason: time. With DAST, scanning for vulnerabilities takes time, special skills and maintenance. Therefore, with the rapid pace of CI/CD, it’s becoming more of a challenge to implement DAST. While automation

Read More ›

AppSec Metrics That Matter

  Metrics matter. Metrics are important because they tell you, stakeholders and budget planners how well you’re meeting your set goals. Metrics ensure that your program has visibility and is the only way to effectively communicate the value of your application security program. If you simply go through the AppSec motions of scanning and fixing,

Read More ›

June 2017: Top Hacks and Breaches [INFOGRAPHIC]

As we dive into June’s biggest hacks and breaches, we begin with OneLogin – a company which allows users to access multiple websites, applications, and services with just a single password. An attacker got hold of highly-sensitive keys for OneLogin’s cloud instance, and successfully in using its front-door key. In a statement released by the

Read More ›

The ABCs of AppSec Testing: IAST & SAST

With cybercrime on the rise, application security remains a massive challenge for organizations and governments across the globe. When it comes to the safety of applications, Penetration Testing (Pen Testing) and Dynamic Application Security Testing (DAST) both remain standing as capable solutions, but both come with a fair share of inherited weaknesses which raise significant

Read More ›

Jump to Category