Overview
Check Point CloudGuard Code Security is a powerful language-agnostic code scanner able to: Detect hardcoded secrets, keys, and credentials in any programming language with dynamic detectors in repos and host file systems.
Detect and remove secrets from Jira and Confluence.
Identify compliance violations against industry standards and regulatory requirements, including various AWS frameworks for Infrastructure as Code (IaC) template configurations.
Seamlessly integrate with VS Code, GitHub, GitLab, and Bitbucket, as well as CI/CD tools like Jenkins, CircleCI, AWS CodePipeline, and many more, with pre-receive hooks for blocking risky commits to periodic repo scans using git bots.
No reliance on cloud services, meaning your source code never leaves your environment.
Harden CI/CD pipelines and limit source code access to mitigate code exfiltration risks and unauthorized access. Designed for developers but built for the CISO organization, CloudGuard Code Security is a DevSecOps/Shift-Left solution that ensures code security does not hinder development speed or burden developers with building intricate scanner rules and quality gates while empowering security practitioners with full visibility and control over rules and posture. It achieves this with: Blazing fast scan speed: approximately 10 MB in half a second.
Detailed remediation playbooks, providing developers with solutions rather than problems.
Dashboards designed to facilitate cooperation between developers and security practitioners from the VP R&D/CISO level down to the software engineer/SOC expert.
2,800 out-of-the-box detectors, allowing security experts to enforce rules without requiring coding/DevOps skills. From identifying risky code (e.g., open ports, dated protocols, etc.) to detecting hard-coded keys and credentials and IaC violations of security farmwork, nothing escapes our detectors.
Seamless integration with Check Point CloudGuard ecosystem, extending code security to runtime (including secrets, malware, and CVE detection in containers, VMs, and serverless).
Highlights
- No More Secrets: Regardless of programming language. Detect secrets like API keys and passwords in any programming language spanning your entire development pipeline from the IDE to the build machine, as well as Jira and Confluence.
- Blazing Fast Performance: 10 MB of code in half a second. Scan 10 MB of code in about half a second with over 2800 active detectors out of the box, providing high-speed security without disrupting development workflows and without sending your code for scanning in the cloud.
- Compliance Enforcement: From ISO, to NIST, CIS, PCI, and more. Identify compliance with various AWS frameworks for Infrastructure as Code (IaC) template configurations, ensuring your cloud infrastructure meets industry standards and best practices before configurations reach your cloud.
Details
Features and programs
Financing for AWS Marketplace purchases
Pricing
Dimension | Description | Cost/12 months |
|---|---|---|
25 developer | CloudGuard Code Security scans source code directly in the CI for secrets and misconfigurations. With easy integration and fast on-prem scanner that is customizable and powered by ML, it empowers developers to code securely by alerting them of any secrets or misconfigurations, while visualizing the entire codebase and supplying alerts, reports, and analytics. | $6,955.00 |
100 developer | CloudGuard CS scans source code directly in the CI for secrets and misconfigurations. With easy integration and fast on-prem scanner that is customizable and powered by ML, it empowers developers to code securely by alerting them of any secrets or misconfigurations, while visualizing the entire codebase and supplying alerts, reports, and analytics. | $22,780.30 |
Vendor refund policy
No Refunds.
Custom pricing options
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
CloudGuard Code Security Support Information
This offer includes Premium Support. For the full list of included support services visit: https://www.checkpoint.com/support-services/support-plans/
- To open a support ticket, please have your Check Point user center account information available. If you do not have a user center account, sign up for one here: https://accounts.checkpoint.com . Need support? Contact us at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Customer reviews
Usefull for code integration and code security
Cloud infrastructure Security & Network Expert
Great series of softwares from Check Point Cloud Guards
Providing us real time slthrealt protection.
Improved and advanced our Cloud applications.
Source Code reviewer
Monitoring our assets like Cloud infrastructure and codes.
Continuous monitoring of codes and assets.