Checkmarx¶
Umfassende Checkmarx-Befehle und Workflows für die Systemverwaltung auf allen Plattformen.
Grundlegende Befehle¶
| Command | Description |
|---|---|
checkmarx --version |
Show checkmarx version |
checkmarx --help |
Display help information |
checkmarx init |
Initialize checkmarx in current directory |
checkmarx status |
Check current status |
checkmarx list |
List available options |
checkmarx info |
Display system information |
checkmarx config |
Show configuration settings |
checkmarx update |
Update to latest version |
checkmarx start |
Start checkmarx service |
checkmarx stop |
Stop checkmarx service |
checkmarx restart |
Restart checkmarx service |
checkmarx reload |
Reload configuration |
Installation¶
Linux/Ubuntu¶
```bash
Package manager installation¶
sudo apt update sudo apt install checkmarx
Alternative installation¶
wget https://github.com/example/checkmarx/releases/latest/download/checkmarx-linux chmod +x checkmarx-linux sudo mv checkmarx-linux /usr/local/bin/checkmarx
Build from source¶
git clone https://github.com/example/checkmarx.git cd checkmarx make && sudo make install ```_
macOS¶
```bash
Homebrew installation¶
brew install checkmarx
MacPorts installation¶
sudo port install checkmarx
Manual installation¶
curl -L -o checkmarx https://github.com/example/checkmarx/releases/latest/download/checkmarx-macos chmod +x checkmarx sudo mv checkmarx /usr/local/bin/ ```_
Windows¶
```powershell
Chocolatey installation¶
choco install checkmarx
Scoop installation¶
scoop install checkmarx
Winget installation¶
winget install checkmarx
Manual installation¶
Download from https://github.com/example/checkmarx/releases¶
Extract and add to PATH¶
```_
Konfiguration¶
| Command | Description |
|---|---|
checkmarx config show |
Display current configuration |
checkmarx config list |
List all configuration options |
checkmarx config set <key> <value> |
Set configuration value |
checkmarx config get <key> |
Get configuration value |
checkmarx config unset <key> |
Remove configuration value |
checkmarx config reset |
Reset to default configuration |
checkmarx config validate |
Validate configuration file |
checkmarx config export |
Export configuration to file |
Erweiterte Operationen¶
Dateioperationen¶
```bash
Create new file/resource¶
checkmarx create
Read file/resource¶
checkmarx read
Update existing file/resource¶
checkmarx update
Delete file/resource¶
checkmarx delete
Copy file/resource¶
checkmarx copy
Move file/resource¶
checkmarx move
List all files/resources¶
checkmarx list --all
Search for files/resources¶
checkmarx search
Netzwerkaktivitäten¶
```bash
Connect to remote host¶
checkmarx connect
Listen on specific port¶
checkmarx listen --port
Send data to target¶
checkmarx send --target
Receive data from source¶
checkmarx receive --source
Test connectivity¶
checkmarx ping
Scan network range¶
checkmarx scan
Monitor network traffic¶
checkmarx monitor --interface
Proxy connections¶
checkmarx proxy --listen
Prozessmanagement¶
```bash
Start background process¶
checkmarx start --daemon
Stop running process¶
checkmarx stop --force
Restart with new configuration¶
checkmarx restart --config
Check process status¶
checkmarx status --verbose
Monitor process performance¶
checkmarx monitor --metrics
Kill all processes¶
checkmarx killall
Show running processes¶
checkmarx ps
Manage process priority¶
checkmarx priority --pid
Sicherheitsmerkmale¶
Authentication¶
```bash
Login with username/password¶
checkmarx login --user
Login with API key¶
checkmarx login --api-key
Login with certificate¶
checkmarx login --cert
Logout current session¶
checkmarx logout
Change password¶
checkmarx passwd
Generate new API key¶
checkmarx generate-key --name
List active sessions¶
checkmarx sessions
Revoke session¶
checkmarx revoke --session
Verschlüsselung¶
```bash
Encrypt file¶
checkmarx encrypt --input
Decrypt file¶
checkmarx decrypt --input
Generate encryption key¶
checkmarx keygen --type
Sign file¶
checkmarx sign --input
Verify signature¶
checkmarx verify --input
Hash file¶
checkmarx hash --algorithm
Generate certificate¶
checkmarx cert generate --name
Verify certificate¶
checkmarx cert verify --cert
Überwachung und Protokollierung¶
Systemüberwachung¶
```bash
Monitor system resources¶
checkmarx monitor --system
Monitor specific process¶
checkmarx monitor --pid
Monitor network activity¶
checkmarx monitor --network
Monitor file changes¶
checkmarx monitor --files
Real-time monitoring¶
checkmarx monitor --real-time --interval 1
Generate monitoring report¶
checkmarx report --type monitoring --output
Set monitoring alerts¶
checkmarx alert --threshold
View monitoring history¶
checkmarx history --type monitoring ```_
Protokoll¶
```bash
View logs¶
checkmarx logs
View logs with filter¶
checkmarx logs --filter
Follow logs in real-time¶
checkmarx logs --follow
Set log level¶
checkmarx logs --level
Rotate logs¶
checkmarx logs --rotate
Export logs¶
checkmarx logs --export
Clear logs¶
checkmarx logs --clear
Archive logs¶
checkmarx logs --archive
Fehlerbehebung¶
Gemeinsame Themen¶
**Issue: Befehl nicht gefunden* ```bash
Check if checkmarx is installed¶
which checkmarx checkmarx --version
Check PATH variable¶
echo $PATH
Reinstall if necessary¶
sudo apt reinstall checkmarx
or¶
brew reinstall checkmarx ```_
Issue: Genehmigung verweigert ```bash
Run with elevated privileges¶
sudo checkmarx
Check file permissions¶
ls -la $(which checkmarx)
Fix permissions¶
chmod +x /usr/local/bin/checkmarx
Check ownership¶
sudo chown \(USER:\)USER /usr/local/bin/checkmarx ```_
**Issue: Konfigurationsfehler* ```bash
Validate configuration¶
checkmarx config validate
Reset to default configuration¶
checkmarx config reset
Check configuration file location¶
checkmarx config show --file
Backup current configuration¶
checkmarx config export > backup.conf
Restore from backup¶
checkmarx config import backup.conf ```_
**Issue: Service nicht starten* * ```bash
Check service status¶
checkmarx status --detailed
Check system logs¶
journalctl -u checkmarx
Start in debug mode¶
checkmarx start --debug
Check port availability¶
netstat -tulpn|grep
Kill conflicting processes¶
checkmarx killall --force ```_
Debug Befehle¶
| Command | Description |
|---|---|
checkmarx --debug |
Enable debug output |
checkmarx --verbose |
Enable verbose logging |
checkmarx --trace |
Enable trace logging |
checkmarx test |
Run built-in tests |
checkmarx doctor |
Run system health check |
checkmarx diagnose |
Generate diagnostic report |
checkmarx benchmark |
Run performance benchmarks |
checkmarx validate |
Validate installation and configuration |
Leistungsoptimierung¶
Ressourcenmanagement¶
```bash
Set memory limit¶
checkmarx --max-memory 1G
Set CPU limit¶
checkmarx --max-cpu 2
Enable caching¶
checkmarx --cache-enabled
Set cache size¶
checkmarx --cache-size 100M
Clear cache¶
checkmarx cache clear
Show cache statistics¶
checkmarx cache stats
Optimize performance¶
checkmarx optimize --profile
Show performance metrics¶
checkmarx metrics ```_
Parallele Verarbeitung¶
```bash
Enable parallel processing¶
checkmarx --parallel
Set number of workers¶
checkmarx --workers 4
Process in batches¶
checkmarx --batch-size 100
Queue management¶
checkmarx queue add
Integration¶
Schrift¶
```bash
!/bin/bash¶
Example script using checkmarx¶
set -euo pipefail
Configuration¶
CONFIG_FILE="config.yaml" LOG_FILE="checkmarx.log"
Check if checkmarx is available¶
if ! command -v checkmarx &> /dev/null; then echo "Error: checkmarx is not installed" >&2 exit 1 fi
Function to log messages¶
log() \\{ echo "$(date '+%Y-%m-%d %H:%M:%S') - \(1"|tee -a "\)LOG_FILE" \\}
Main operation¶
main() \\{ log "Starting checkmarx operation"
if checkmarx --config "$CONFIG_FILE" run; then
log "Operation completed successfully"
exit 0
else
log "Operation failed with exit code $?"
exit 1
fi
\\}
Cleanup function¶
cleanup() \\{ log "Cleaning up" checkmarx cleanup \\}
Set trap for cleanup¶
trap cleanup EXIT
Run main function¶
main "$@" ```_
API Integration¶
```python
!/usr/bin/env python3¶
""" Python wrapper for the tool """
import subprocess import json import logging from pathlib import Path from typing import Dict, List, Optional
class ToolWrapper: def init(self, config_file: Optional[str] = None): self.config_file = config_file self.logger = logging.getLogger(name)
def run_command(self, args: List[str]) -> Dict:
"""Run command and return parsed output"""
cmd = ['tool_name']
if self.config_file:
cmd.extend(['--config', self.config_file])
cmd.extend(args)
try:
result = subprocess.run(
cmd,
capture_output=True,
text=True,
check=True
)
return \\\\{'stdout': result.stdout, 'stderr': result.stderr\\\\}
except subprocess.CalledProcessError as e:
self.logger.error(f"Command failed: \\\\{e\\\\}")
raise
def status(self) -> Dict:
"""Get current status"""
return self.run_command(['status'])
def start(self) -> Dict:
"""Start service"""
return self.run_command(['start'])
def stop(self) -> Dict:
"""Stop service"""
return self.run_command(['stop'])
Example usage¶
if name == "main": wrapper = ToolWrapper() status = wrapper.status() print(json.dumps(status, indent=2)) ```_
Umweltvariablen¶
| Variable | Description | Default |
|---|---|---|
CHECKMARX_CONFIG |
Configuration file path | ~/.checkmarx/config.yaml |
CHECKMARX_HOME |
Home directory | ~/.checkmarx |
CHECKMARX_LOG_LEVEL |
Logging level | INFO |
CHECKMARX_LOG_FILE |
Log file path | ~/.checkmarx/logs/checkmarx.log |
CHECKMARX_CACHE_DIR |
Cache directory | ~/.checkmarx/cache |
CHECKMARX_DATA_DIR |
Data directory | ~/.checkmarx/data |
CHECKMARX_TIMEOUT |
Default timeout | 30s |
CHECKMARX_MAX_WORKERS |
Maximum workers | 4 |
Datei konfigurieren¶
```yaml
~/.checkmarx/config.yaml¶
version: "1.0"
General settings¶
settings: debug: false verbose: false log_level: "INFO" log_file: "~/.checkmarx/logs/checkmarx.log" timeout: 30 max_workers: 4
Network configuration¶
network: host: "localhost" port: 8080 ssl: true timeout: 30 retries: 3
Security settings¶
security: auth_required: true api_key: "" encryption: "AES256" verify_ssl: true
Performance settings¶
performance: cache_enabled: true cache_size: "100M" cache_dir: "~/.checkmarx/cache" max_memory: "1G"
Monitoring settings¶
monitoring: enabled: true interval: 60 metrics_enabled: true alerts_enabled: true ```_
Beispiele¶
Basis-Workflow¶
```bash
1. Initialize checkmarx¶
checkmarx init
2. Configure basic settings¶
checkmarx config set host example.com checkmarx config set port 8080
3. Start service¶
checkmarx start
4. Check status¶
checkmarx status
5. Perform operations¶
checkmarx run --target example.com
6. View results¶
checkmarx results
7. Stop service¶
checkmarx stop ```_
Erweiterter Workflow¶
```bash
Comprehensive operation with monitoring¶
checkmarx run \ --config production.yaml \ --parallel \ --workers 8 \ --verbose \ --timeout 300 \ --output json \ --log-file operation.log
Monitor in real-time¶
checkmarx monitor --real-time --interval 5
Generate report¶
checkmarx report --type comprehensive --output report.html ```_
Automatisierungsbeispiel¶
```bash
!/bin/bash¶
Automated checkmarx workflow¶
Configuration¶
TARGETS_FILE="targets.txt" RESULTS_DIR="results/$(date +%Y-%m-%d)" CONFIG_FILE="automation.yaml"
Create results directory¶
mkdir -p "$RESULTS_DIR"
Process each target¶
while IFS= read -r target; do echo "Processing $target..."
checkmarx \
--config "$CONFIG_FILE" \
--output json \
--output-file "$RESULTS_DIR/$\\\\{target\\\\}.json" \
run "$target"
done < "$TARGETS_FILE"
Generate summary report¶
checkmarx report summary \ --input "\(RESULTS_DIR/*.json" \ --output "\)RESULTS_DIR/summary.html" ```_
Best Practices¶
Sicherheit¶
- Prüfsummen beim Herunterladen von Binaries immer überprüfen
- Verwenden Sie starke Authentifizierungsmethoden (API-Tasten, Zertifikate)
- Regelmäßig auf die neueste Version aktualisieren
- Prinzip der Mindestberechtigung
- Audit-Logging aktivieren für Compliance
- Verschlüsselte Verbindungen verwenden, wenn möglich
- Alle Eingänge und Konfigurationen validieren
- Implementierung richtiger Zugriffskontrollen
Leistung¶
- Verwenden Sie geeignete Ressourcengrenzen für Ihre Umwelt
- Systemleistung regelmäßig überwachen
- Optimieren Sie die Konfiguration für Ihren Anwendungsfall
- Parallele Verarbeitung verwenden, wenn nützlich
- Durchführung richtiger Cache-Strategien
- Regelmäßige Wartung und Reinigung
- Profilleistung Engpässe
- Verwenden Sie effiziente Algorithmen und Datenstrukturen
Betrieb¶
- umfassende Dokumentation
- Umsetzung richtiger Backup-Strategien
- Verwenden Sie die Versionssteuerung für Konfigurationen
- Monitor und Alarm auf kritischen Metriken
- Implementierung der richtigen Fehlerbehandlung
- Automatisierung für repetitive Aufgaben verwenden
- Regelmäßige Sicherheitsaudits und Updates
- Plan zur Katastrophenrückgewinnung
Entwicklung¶
- Befolgen Sie Kodierungsstandards und Konventionen
- Vollständige Tests schreiben
- Verwenden Sie die kontinuierliche Integration / Bereitstellung
- Durchführung einer ordnungsgemäßen Protokollierung und Überwachung
- Dokumente APIs und Schnittstellen
- Verwenden Sie die Versionskontrolle effektiv
- Prüfcode regelmäßig
- Rückwärtskompatibilität sichern
Ressourcen¶
Offizielle Dokumentation¶
- offizielle Website
- [Dokumentation](LINK_18__
- [API Reference](LINK_18__
- (LINK_18)
- Konfigurationsreferenz
Gemeinschaftsmittel¶
- GitHub Repository
- Issue Tracker
- [Gemeinschaftsforum](LINK_18
- (LINK_18)
- [Reddit Community](LINK_18__
- Stack Overflow
Lernressourcen¶
- (LINK_18)
- (LINK_18_)
- (LINK_18)
- Video-Tutorials
- (LINK_18)
- Zertifizierungsprogramm
In den Warenkorb¶
- Git - Komplementärfunktionalität
- Docker - Alternative Lösung
- Kubernetes - Integrationspartner
--
Letzte Aktualisierung: 2025-07-06|Bearbeiten auf GitHub