Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/theinit01/tryhackme-devsecops-material
A repo of notes for the DevSecOps learning path on tryhackme
https://github.com/theinit01/tryhackme-devsecops-material
ansible ci-cd cicd devops devsecops docker git github gitlab gitlab-ci gitops jenkins kubernetes terraform tryhackme tryhackme-writeups vagrant
Last synced: about 1 month ago
JSON representation
A repo of notes for the DevSecOps learning path on tryhackme
- Host: GitHub
- URL: https://github.com/theinit01/tryhackme-devsecops-material
- Owner: theinit01
- Created: 2024-05-20T17:46:38.000Z (6 months ago)
- Default Branch: main
- Last Pushed: 2024-05-25T06:05:30.000Z (6 months ago)
- Last Synced: 2024-10-13T23:21:13.476Z (about 1 month ago)
- Topics: ansible, ci-cd, cicd, devops, devsecops, docker, git, github, gitlab, gitlab-ci, gitops, jenkins, kubernetes, terraform, tryhackme, tryhackme-writeups, vagrant
- Homepage:
- Size: 2.1 MB
- Stars: 1
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- Security: Security in the Pipeline/te.txt
Awesome Lists containing this project
README
# TryHackMe DevSecOps Learning Path Notes
Welcome to the repository for TryHackMe's DevSecOps learning path notes! This repository contains summarized notes from various rooms within the TryHackMe platform. The notes are designed to help you grasp the key concepts and practical aspects of DevSecOps.
## Overview
DevSecOps is an approach to software development that integrates security practices within the DevOps process. It emphasizes the importance of incorporating security measures at every stage of the software development lifecycle.
## Contents
The repository is organized by rooms, each covering specific topics related to DevSecOps. Here's an overview of the contents:
- Section 1: Secure Software Development
- Introduction to DevSecops
- SDLC
- SSDLC
- Section 2: Security of the Pipeline
- Intro to Pipeline Automation
- Source Code Security
- CI/CD and Build Security
- Section 3: Security in the Pipeline
- Dependency Management
- SAST
- DAST
- Mother's Secret
- Section 4: Container Security
- Intro to Containerization
- Into to Docker
- Intro to Kubernetes (K8s)
- Container Vulnerabilities
- Container Hardening
- Section 5: Infrastructure as Code
- Intro to IaC
- On-Premises IaC
- Cloud-based IaC
## Usage
Feel free to explore the notes in each room to enhance your understanding of DevSecOps concepts. You can use these notes as a reference while completing the corresponding rooms on the TryHackMe platform. Additionally, you can contribute to this repository by adding your own notes or corrections.
## How to Contribute
Contributions to this repository are welcome! If you find any errors or have additional insights to share, please feel free to open a pull request with your changes. Make sure to follow the existing formatting conventions and provide clear explanations for your contributions.
## Disclaimer
These notes are intended for educational purposes only. While they strive to provide accurate information, they may not cover every aspect of DevSecOps comprehensively. Always refer to official documentation and consult with experts when implementing security measures in production environments.
## Credits
- Original content provided by TryHackMe
- Summarized notes created using ChatGPT
## License
This repository is licensed under the [MIT License](LICENSE).