Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
DevSecOps
βΎοΈ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe π
https://github.com/hahwul/DevSecOps
Last synced: 5 days ago
JSON representation
-
π¦ Resources
-
0. DevSecOps Overview
- Strengthen and Scale security using DevSecOps
- DevSecOps in Wikipedia
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Zero to DevSecOps (OWASP Meetup)
- DevSecOps What Why And How (BlackHat USA-19)
- DevSecOps β Security and Test Automation (Mitre)
- DevSecOps: Making Security Central To Your DevOps Pipeline
- Strengthen and Scale security using DevSecOps
- DSOVS (OWASP DevSecOps Verification Standard)
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
- Strengthen and Scale security using DevSecOps
-
1. Design
- OWASP's Software Assurance Maturity Model
- Agile Threat Modeling Toolkit
- OWASP Threat Dragon
- SDL(Secure Development Lifecycle) by Microsoft
- NIST's Secure Software Developerment Framework
- DevSecOps basics: 9 tips for shifting left (Gitlab)
- 6 Ways to bring security to the speed of DevOps (Gitlab)
- What is Threat Modeling / Wikipedia
- Threat Modeling by OWASP
- Application Threat Modeling by OWASP
-
2. Develop
-
4. Test
- DAST using pdiscoveryio Nuclei (github action)
- ZAPCon 2021-Democratizing ZAP with test automation and domain specific languages
- DAST levels defined by OWASP
- Penetration Testing at DevSecOps Speed
- Dynamic Application Security Testing with ZAP and GitHub Actions
- ZAPCon 2021-Democratizing ZAP with test automation and domain specific languages
- Dynamic Application Security Testing (DAST) in Gitlab
- ZAPCon 2021-Democratizing ZAP with test automation and domain specific languages
-
3. Build
-
5. Deploy
-
6. Operate and Monitor
-
-
Security of CICD
-
ππΌ Wrap Up
-
6. Operate and Monitor
-
-
π Other roadmaps
-
6. Operate and Monitor
-  |
-
Programming Languages
Sub Categories