/devsecops

A repo created to document my devesecops journey

DevSecOps

A repo created to document my devesecops journey

Tools

Containerization

CI\CD Orchestration

Secrets Scanning

  • Truffle Hog
  • Git-Secrets
  • Gitleaks

Static Application Security Tests (SAST)

Software Composition Analyis & Dependency Check

  • OWASP Dependency Check
  • NPMAudit
  • RetireJS

DAST

  • Nikto
  • OWASP ZAP

Jenkins DevSecOps Pipeline Scripts

NodeJS Application

Useful blog posts