Skip to content

Latest commit

 

History

History
22 lines (20 loc) · 1.85 KB

File metadata and controls

22 lines (20 loc) · 1.85 KB

awesome-devsecops Awesome TAG

Awesome list of DevSecOps Tools

Tools

SCA (Dependency Analysis)

  • DependencyCheck - Tool that searches for vulnerabilities in your dependencies by OWASP.
  • Snyk - CLI that finds vulnerabilities in your dependencies, supports various languages.
  • CVE Lite CLI - OWASP Incubator Project. Scans JavaScript and TypeScript lockfiles locally for vulnerable dependencies across npm, pnpm, Yarn, and Bun, with copy-and-run fix commands.

SAST (Source Code Analysis)

  • semgrep - Awesome tool that can highlight vulnerable code like a linter. Supports various languages.
  • bandit - finds security flaws in Python code.
  • brakeman - finds security flaws in Ruby on Rails code.
  • dawnscanner - finds security flaws in Ruby code.
  • GolangCI-Lint - finds vulnerabilities in Go code.
  • Security Code Scan - finds flaws in .NET code.

DAST (Dynamic Application Security Testing)

  • Nuclei - Web security scanning framework with a large community database of security checks.

SIEM (Security Event Management)

  • OSSIM - Free & Open Source Security Incident Event Management

Secret Detection

Ressources