Equixly, an agentic AI-powered offensive security platform designed for modern applications and APIs, has announced a new integration with Checkmarx, a global provider of agentic application security solutions. The collaboration enables continuous API penetration testing and business logic validation to be delivered directly within Checkmarx environments.
Through the integration, customers using Checkmarx One can extend their current static application security testing and software composition analysis (SAST and SCA) processes with automated, AI-driven testing of APIs and application workflows. This additional layer of analysis allows organisations to enhance their security testing by incorporating autonomous simulations of real-world attack scenarios.
By combining traditional secure code analysis with continuous offensive validation techniques, organisations gain broader visibility into exploitable risks within their systems. This includes identifying vulnerabilities and attack pathways that may be overlooked by standard security tools or periodic penetration testing exercises.
Equixly’s Agentic AI hacker continuously assesses applications and APIs by emulating the behaviour of real attackers. The system is designed to identify sophisticated multi-step exploit chains and potential abuse of business logic that can occur across complex application environments.
Together, the companies provide:
- Continuous API penetration testing within the Checkmarx One platform
- Detection of business logic vulnerabilities
- Validated, exploit-driven findings to reduce false positives
- A unified view of code-level risk
- Centralized visibility through a single pane of glass
As APIs become the backbone of modern digital infrastructure, risk increasingly emerges not just from individual coding flaws, but from how APIs authenticate, authorize, and orchestrate business processes. These risks are often invisible to static testing tools and only surface when exploited in production.
“Application security programs are evolving beyond code analysis alone,” said Alessio Dalla Piazza, CTO and Co-Founder of Equixly. “Checkmarx has long helped organizations build secure software from the inside out. With this integration, we extend that protection, continuously attacking APIs and workflows the way real adversaries do. This gives security teams a far more complete understanding of their true attack surface.”
For Checkmarx customers, the integration delivers enhanced assurance across the full application lifecycle. Security leaders can correlate findings from source code to live exploitation paths, enabling more accurate prioritization and faster remediation.
“Modern application security requires continuous security across the agentic development lifecycle tapping into all signals, not only source code.,” said Ori Bendet, VP of product at Checkmarx. “By integrating with Equixly, our customers gain enhanced continuous offensive validation of their APIs and application logic. This strengthens their ability to identify exploitable risk and maintain confidence as applications evolve.”
The integration reflects a broader industry shift toward proactive, continuous offensive security, where organizations attack their own systems with the same automation and consistency used by modern adversaries.
By combining Checkmarx’s deep code intelligence and agentic expertise with Equixly’s autonomous penetration testing, customers can:
- Identify exploitable API vulnerabilities earlier and validate them continuously
- Reduce reliance on periodic, point-in-time penetration tests
- Gain greater visibility across distributed, API-driven environments
- Improve remediation efficiency through high-confidence, exploit-backed findings
The integration is available immediately to joint customers.
About Equixly
Equixly is an agentic offensive security platform built for the continuous penetration testing of modern applications and APIs in constantly evolving environments.
In an era where AI-powered attacks operate Persistently, Equixly’s
proprietary Agentic AI hacker acts like a real adversary, continuously uncovering exploitable risk across APIs, workflows, and business logic, and providing actionable insight so security and engineering teams can fix issues faster and innovate with confidence.
Already trusted by leading European banks, insurers, and payment giants, Equixly was founded by Mattia and Alessio Dalla Piazza, and backed by 33N Ventures, Alpha Intelligence Capital, JME Ventures, 360 Capital and the Fondazione Cassa di Risparmio di Firenze. Learn more at www.equixly.com
About Checkmarx
Checkmarx is the leader in agentic application security, delivering enterprise-grade protection while lowering engineering costs and accelerating development velocity. The Checkmarx One platform scans trillions of lines of code each year for companies, cutting vulnerability density by more than half. Its autonomous security agents detect and counter AI-driven threats across the SDLC, providing prevention-first protection for legacy, modern, and AI-generated code at enterprise scale. Follow Checkmarx on LinkedIn, YouTube, and X.
