0% found this document useful (0 votes)

45 views4 pages

Security Tools Used in DevOps

The document lists 20 security tools used in DevOps, including SonarQube, OWASP ZAP, and HashiCorp Vault, each serving different security purposes such as code analysis, vulnerability scanning, and secrets management. These tools collectively enhance security across various aspects of the DevOps environment, addressing needs like container security and incident response. The choice of tools should align with an organization's specific security requirements and infrastructure.

Uploaded by

Romuald Djeteje

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

45 views4 pages

Security Tools Used in DevOps

Uploaded by

Romuald Djeteje

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 4

20 Security Tools used In DevOps

. By DevOps Shack .

1. SonarQube (SAST):

o Description: SonarQube is a static code analysis tool that helps identify

code quality issues, bugs, and security vulnerabilities.
o Example: SonarQube

2. OWASP ZAP (DAST):

o Description: ZAP is an open-source dynamic application security

testing tool used for finding vulnerabilities in web applications during
runtime.
o Example: OWASP ZAP

3. Contrast Security (IAST):

o Description: Contrast Security provides interactive application security

testing, offering continuous monitoring and protection for applications.
o Example: Contrast Security

4. Anchore (Container Security):

o Description: Anchore scans container images for vulnerabilities, policy

violations, and provides insights into container security.
o Example: Anchore

5. HashiCorp Vault (Secrets Management):

o Description: Vault manages secrets and protects sensitive data,

providing centralized secret management and secure access.
o Example: HashiCorp Vault
6. Checkov (IaC Security):

o Description: Checkov is an IaC security tool that scans infrastructure-

as-code files for security misconfigurations.
o Example: Checkov

7. Prometheus and Grafana (Continuous Monitoring):

o Description: Prometheus is a monitoring and alerting toolkit, and

Grafana is used for visualization. Together, they provide powerful
monitoring capabilities.
o Examples: Prometheus, Grafana

8. ELK Stack (SIEM):

o Description: ELK Stack combines Elasticsearch, Logstash, and Kibana

for log management and analysis, helping in identifying security
incidents.
o Examples: Elasticsearch, Logstash, Kibana

9. Nessus (Vulnerability Scanning):

o Description: Nessus is a widely-used vulnerability scanner that

identifies and helps remediate vulnerabilities in systems and
applications.
o Example: Tenable Nessus

10. Demisto (SOAR):

o Description: Demisto (now part of Palo Alto Networks Cortex XSOAR)

is a Security Orchestration, Automation, and Response platform for
incident response automation.
o Example: Cortex XSOAR

11. Snort (Intrusion Detection and Prevention System):

o Description: Snort is an open-source IDS/IPS that monitors network

traffic for malicious activity and helps prevent security breaches.
o Example: Snort

12. Clair (Container Image Security):

o Description: Clair is an open-source project for the static analysis of

vulnerabilities in application containers.
o Example: Clair
13. Sysdig Secure (Container Security):

o Description: Sysdig Secure provides container security and monitoring,

offering runtime protection and visibility.
o Example: Sysdig Secure

14. Aqua Security (Container Security):

o Description: Aqua Security specializes in container security, providing

comprehensive solutions for securing containerized applications.
o Example: Aqua Security

15. Arachni (Web Application Security Scanner):

o Description: Arachni is an open-source web application security

scanner designed to find security issues in web applications.
o Example: Arachni

16. OpenVAS (Open Vulnerability Assessment System):

o Description: OpenVAS is an open-source vulnerability scanner used to

perform comprehensive vulnerability assessments.
o Example: OpenVAS

17. GitSecrets (Git Repository Scanning):

o Description: GitSecrets scans Git repositories for sensitive information

like passwords and API keys, helping prevent accidental leaks.
o Example: GitSecrets

18. Trivy (Container Image Security):

o Description: Trivy is a simple and comprehensive vulnerability scanner

for container images, focusing on simplicity and speed.
o Example: Trivy

19. Wazuh (Host-based Intrusion Detection System):

o Description: Wazuh is a security information and event management

(SIEM) tool with host-based intrusion detection capabilities.
o Example: Wazuh
20. GitLab CI/CD (Integrated Security):

o Description: GitLab CI/CD, when configured with security scanners and

tools, provides integrated security checks within the development
pipeline.
o Example: GitLab CI/CD

These tools collectively address various aspects of security within a DevOps

environment, covering code analysis, container security, infrastructure security,
incident response, and more. The specific choice of tools depends on the
organization's needs, infrastructure, and security requirements. Integrating multiple
tools into the DevOps pipeline helps create a robust security posture.

DevSecOps For The Absolute Beginners
No ratings yet
DevSecOps For The Absolute Beginners
61 pages
Disaster Recovery Into The CICD Pipeline
No ratings yet
Disaster Recovery Into The CICD Pipeline
11 pages
DevSecOps for Developers
No ratings yet
DevSecOps for Developers
12 pages
Scanning Tools
No ratings yet
Scanning Tools
8 pages
SOC 40 Tools
No ratings yet
SOC 40 Tools
40 pages
Security Operation Center - Operations Development
100% (1)
Security Operation Center - Operations Development
71 pages
Dev Sec Ops
100% (1)
Dev Sec Ops
33 pages
100 Tools For Cybersecurity Analyst
50% (2)
100 Tools For Cybersecurity Analyst
16 pages
100 Offensive Linux Security Tools
No ratings yet
100 Offensive Linux Security Tools
4 pages
Devops
No ratings yet
Devops
3 pages
100 Terms & Services For DevOps
No ratings yet
100 Terms & Services For DevOps
10 pages
Advanced Dev Se Cops Questions Recall Notes
No ratings yet
Advanced Dev Se Cops Questions Recall Notes
35 pages
GitHub Ebook Built in Security Demo Day Promo
No ratings yet
GitHub Ebook Built in Security Demo Day Promo
22 pages
Sapkota Dinesh Thesis
No ratings yet
Sapkota Dinesh Thesis
98 pages
DevSecOps Notes For Beginners
No ratings yet
DevSecOps Notes For Beginners
133 pages
Ultimate DevSecOps Library 1706607714
No ratings yet
Ultimate DevSecOps Library 1706607714
27 pages
Devops Cycle + Tools
No ratings yet
Devops Cycle + Tools
20 pages
Secret Knowledge Bonus Edition
No ratings yet
Secret Knowledge Bonus Edition
18 pages
Access Control Security Guide
No ratings yet
Access Control Security Guide
15 pages
Passwords
No ratings yet
Passwords
25 pages
Pawan Aadhar Card
0% (2)
Pawan Aadhar Card
1 page
Dev Sec Ops
No ratings yet
Dev Sec Ops
42 pages
?????????
No ratings yet
?????????
32 pages
Shrivastava DevSecOps What Why and How
No ratings yet
Shrivastava DevSecOps What Why and How
50 pages
Devops Q&A
No ratings yet
Devops Q&A
63 pages
Bloque5 - Az 400t00a Enu Trainerhandbook PDF Free
No ratings yet
Bloque5 - Az 400t00a Enu Trainerhandbook PDF Free
73 pages
DevOps & DevSecOps for Enterprises
No ratings yet
DevOps & DevSecOps for Enterprises
41 pages
PSPF Infosec 11 Robust Ict Systems
No ratings yet
PSPF Infosec 11 Robust Ict Systems
6 pages
Week 12 Session 3
No ratings yet
Week 12 Session 3
19 pages
AZ 400T00A ENU PowerPoint - 19
No ratings yet
AZ 400T00A ENU PowerPoint - 19
30 pages
Dev Sec Ops
No ratings yet
Dev Sec Ops
20 pages
Advanced Task3 Web Application Security
No ratings yet
Advanced Task3 Web Application Security
15 pages
Parallel Computing
No ratings yet
Parallel Computing
6 pages
JR CySA+ NOTES
No ratings yet
JR CySA+ NOTES
25 pages
Information Gathering (Reconnaissance) in Cybersecurity
No ratings yet
Information Gathering (Reconnaissance) in Cybersecurity
5 pages
DevSecOps Handbook
No ratings yet
DevSecOps Handbook
31 pages
Security Operation Center 40 Tools
No ratings yet
Security Operation Center 40 Tools
40 pages
Lecture 4
No ratings yet
Lecture 4
22 pages
Top Vulnerability Tools
No ratings yet
Top Vulnerability Tools
2 pages
Ent 48q
No ratings yet
Ent 48q
28 pages
Khan I. Cyber Security For Next-Generation Computing Technologies 2023
100% (1)
Khan I. Cyber Security For Next-Generation Computing Technologies 2023
328 pages
Survey
No ratings yet
Survey
10 pages
CCS-Unit 5-Cyber Security
No ratings yet
CCS-Unit 5-Cyber Security
88 pages
Example Nist 800 53 Wisp Policy Template
No ratings yet
Example Nist 800 53 Wisp Policy Template
41 pages
SAST Code Verification
No ratings yet
SAST Code Verification
13 pages
AES Encryption Standard Guide
No ratings yet
AES Encryption Standard Guide
46 pages
IANS - Third Party Software Security Checklist
No ratings yet
IANS - Third Party Software Security Checklist
4 pages
Creating Tools For Ethical Hacking
No ratings yet
Creating Tools For Ethical Hacking
8 pages
Cryptography Information Security Five 2025
No ratings yet
Cryptography Information Security Five 2025
59 pages
Cryptography Key Management Guide
No ratings yet
Cryptography Key Management Guide
53 pages
Public Key Algorithm Is Also Known As Asymmetric Algorithms Different Keys For Encryption and Decryption
No ratings yet
Public Key Algorithm Is Also Known As Asymmetric Algorithms Different Keys For Encryption and Decryption
9 pages
Unit4 Ecommerce
100% (1)
Unit4 Ecommerce
9 pages
Security Tools Exploration: Md. Atiqur Rahman Roll:1417 IIT University of Dhaka
No ratings yet
Security Tools Exploration: Md. Atiqur Rahman Roll:1417 IIT University of Dhaka
6 pages
Cloud & DevSecOps Security Tools
No ratings yet
Cloud & DevSecOps Security Tools
2 pages
Lec-6 Modes of Operation
No ratings yet
Lec-6 Modes of Operation
30 pages
Active Directory Computer Account Takeover
No ratings yet
Active Directory Computer Account Takeover
22 pages
Tools and Tech
No ratings yet
Tools and Tech
5 pages
Common Security Audit Tools
No ratings yet
Common Security Audit Tools
7 pages
Xxe Vulnerability: Project-Based Internship 2020
No ratings yet
Xxe Vulnerability: Project-Based Internship 2020
25 pages
Presentation 1
No ratings yet
Presentation 1
3 pages
Module 10 - Tools and Code Analysis - ( ( - Globals. - Modulenumber) ) .3. Summary
No ratings yet
Module 10 - Tools and Code Analysis - ( ( - Globals. - Modulenumber) ) .3. Summary
10 pages
List of Essential Tools That Every Ethical Hacker Should Be Familiar
No ratings yet
List of Essential Tools That Every Ethical Hacker Should Be Familiar
6 pages
Merge 2
No ratings yet
Merge 2
3 pages
Cyber Security Notes
No ratings yet
Cyber Security Notes
4 pages
Metasploit: Comprehensive Pen Testing Tool
No ratings yet
Metasploit: Comprehensive Pen Testing Tool
6 pages
Open Source Security Tools Guide
No ratings yet
Open Source Security Tools Guide
3 pages
100 Offensive Linux Security Tools Guide
No ratings yet
100 Offensive Linux Security Tools Guide
4 pages
Introduction To IPSec
No ratings yet
Introduction To IPSec
10 pages
Explore Different Network Security Tools and Applications.: Intrusion Detection and Prevention Systems (IDPS)
No ratings yet
Explore Different Network Security Tools and Applications.: Intrusion Detection and Prevention Systems (IDPS)
3 pages
Tools Required For Cyber Security
No ratings yet
Tools Required For Cyber Security
6 pages
Devops Tools
No ratings yet
Devops Tools
3 pages
Essential DevOps Tools Guide
No ratings yet
Essential DevOps Tools Guide
2 pages
Qualification Requirement For Cybersecurity Job
No ratings yet
Qualification Requirement For Cybersecurity Job
12 pages
AES Encryption: Features & Process
No ratings yet
AES Encryption: Features & Process
4 pages
DevOps Engineer
No ratings yet
DevOps Engineer
4 pages
Devops and Devsecops
No ratings yet
Devops and Devsecops
1 page
DreamFolks Card Access Guide
No ratings yet
DreamFolks Card Access Guide
14 pages
Cybersecurity For Smart Cities: A Brief Review
No ratings yet
Cybersecurity For Smart Cities: A Brief Review
10 pages
Cyber Security
No ratings yet
Cyber Security
13 pages
An Efficient Quantum Cryptanalysis of Lightweight Hash Function - PHOTON-Beetle
No ratings yet
An Efficient Quantum Cryptanalysis of Lightweight Hash Function - PHOTON-Beetle
7 pages
312 50v11
No ratings yet
312 50v11
4 pages
CSS Experiment List
No ratings yet
CSS Experiment List
2 pages
Network Error and Security Alerts
No ratings yet
Network Error and Security Alerts
3 pages
21.2.10 Lab - Encrypting and Decrypting Data Using OpenSSL - ILM
No ratings yet
21.2.10 Lab - Encrypting and Decrypting Data Using OpenSSL - ILM
3 pages
Network Security Policy v1
No ratings yet
Network Security Policy v1
6 pages
SOC Tools
No ratings yet
SOC Tools
6 pages
Cloud Security Tools & Resources
100% (1)
Cloud Security Tools & Resources
7 pages

Security Tools Used in DevOps

Uploaded by

Security Tools Used in DevOps

Uploaded by

20 Security Tools used In DevOps

o Description: SonarQube is a static code analysis tool that helps identify

2. OWASP ZAP (DAST):

o Description: ZAP is an open-source dynamic application security

3. Contrast Security (IAST):

o Description: Contrast Security provides interactive application security

4. Anchore (Container Security):

o Description: Anchore scans container images for vulnerabilities, policy

5. HashiCorp Vault (Secrets Management):

o Description: Vault manages secrets and protects sensitive data,

o Description: Checkov is an IaC security tool that scans infrastructure-

7. Prometheus and Grafana (Continuous Monitoring):

o Description: Prometheus is a monitoring and alerting toolkit, and

8. ELK Stack (SIEM):

o Description: ELK Stack combines Elasticsearch, Logstash, and Kibana

9. Nessus (Vulnerability Scanning):

o Description: Nessus is a widely-used vulnerability scanner that

10. Demisto (SOAR):

o Description: Demisto (now part of Palo Alto Networks Cortex XSOAR)

11. Snort (Intrusion Detection and Prevention System):

o Description: Snort is an open-source IDS/IPS that monitors network

12. Clair (Container Image Security):

o Description: Clair is an open-source project for the static analysis of

o Description: Sysdig Secure provides container security and monitoring,

14. Aqua Security (Container Security):

o Description: Aqua Security specializes in container security, providing

15. Arachni (Web Application Security Scanner):

o Description: Arachni is an open-source web application security

16. OpenVAS (Open Vulnerability Assessment System):

o Description: OpenVAS is an open-source vulnerability scanner used to

17. GitSecrets (Git Repository Scanning):

o Description: GitSecrets scans Git repositories for sensitive information

18. Trivy (Container Image Security):

o Description: Trivy is a simple and comprehensive vulnerability scanner

19. Wazuh (Host-based Intrusion Detection System):

o Description: Wazuh is a security information and event management

o Description: GitLab CI/CD, when configured with security scanners and

These tools collectively address various aspects of security within a DevOps

You might also like