Sahil SikarwarforThe Firewallblogs.thefirewall.org·Dec 22, 2024Automating DAST with OWASP ZAP in GitHub ActionsIntroduction Imagine deploying your shiny new app only to find it riddled with vulnerabilities—like discovering your house has no doors after moving in. Enter OWASP ZAP, your friendly neighborhood security scanner, and GitHub Actions, the automation ...automation
Sahil Sikarwarsahilsikarwar.hashnode.dev·Dec 22, 2024Automating DAST with OWASP ZAP in GitHub ActionsIntroduction Imagine deploying your shiny new app only to find it riddled with vulnerabilities—like discovering your house has no doors after moving in. Enter OWASP ZAP, your friendly neighborhood security scanner, and GitHub Actions, the automation ...DAST
Zahoor Farooqzahoorfarooq.hashnode.dev·Nov 13, 2024Why Qualys is the best DAST tool in DevOpsIntroduction In today’s fast-paced development environment, securing applications continuously and proactively is essential. DevOps teams need powerful tools to identify vulnerabilities without disrupting the development workflow. Dynamic Application...Devops
Muzaffar Khanmuzaffarkhan.hashnode.dev·Oct 20, 2024🔐 Integrating Security in Jenkins Pipelines 🔐In today’s fast-paced software development world, ensuring security throughout the CI/CD pipeline is critical. Here’s a quick guide on how to seamlessly integrate security into Jenkins pipelines for enhanced safety and accountability: 1️⃣ Integrating...DevSecOps
Aamir Patelaamirpatel.hashnode.dev·Sep 25, 2024Real-Time Application Security in Practice with DASTDynamic Application Security Testing (DAST) is essential for application security and helps identify runtime vulnerabilities. DAST, on the other hand, does not require access to the source code in contrast with static testing and instead operates dir...Devops
Deepak parashartechfordummys.hashnode.dev·Sep 24, 2024DevSecOps Tools: A Comprehensive How-To Guide for YARN, GITLEAKS, NJSSCAN, SEMGREP, RETIRE, TRIVY, ZAP, SAST, and DASTIn the modern software development landscape, security has become a vital aspect of the development lifecycle. DevSecOps is the practice of integrating security into every phase of DevOps, ensuring that security is part of the continuous integration ...njsscan
Piyush T Shahpiyops.com·Sep 14, 2024Best Practices for Automating Security Testing in DevSecOps (2024)A Comprehensive Guide In today's fast-paced software development landscape, integrating security into the DevOps pipeline—commonly referred to as DevSecOps—is crucial. As organizations strive for rapid delivery while maintaining robust security, auto...SAST
Aamir Patelaamirpatel.hashnode.dev·Sep 6, 2024Implementing DAST in DevSecOpsIn today’s fast-paced software development landscape, ensuring the security of applications is a critical priority. With the rise of DevSecOps—the integration of security practices within the DevOps pipeline—organizations can automate security checks...DevSecOps
ajay singhlearwithme.hashnode.dev·Aug 16, 2024Step-by-Step Guide to DevSecOps Pipeline with Jenkins and Docker and SAST and DAST Tools.Prerequisites:- Hardware Requirement Minimum hardware requirements: 256 MB of RAM 1 GB of drive space (although 10 GB is a recommended minimum if running Jenkins as a Docker container) Recommended hardware configuration for a small team: 4 GB+ ...66 readssonarqube quality gate
Samikshya Sapkotasamikshyasapkota.hashnode.dev·Jul 24, 2024Security Testing Tools in DevSecOps (SAST, DAST & SCA)In the dynamic landscape of software development, security is more important than ever. As our lives become more connected through technology, the risks from software vulnerabilities grow. With cyber threats on the rise, it's important to know the di...42 readssecurity testing tools