DevOps Classroomnotes 26/Aug/2022

NVD (National Vulnerability Database)

This is list of all known vulnerabilities

CVE

This is a number given to vulnerability and we can search vulnerabilities by technology/platform which we use

Vulnerability Sources

Propietary Code
Dependencies/libraries/frameworks your application is using
Network
Hardware
Operating Systems.
Container

OWASP

Refer Here for the official website
OWASP TOP 10 Refer Here
OWASP API TOP 10 Refer Here

SCA (Software Composition Analysis)

Try creating free trail account in fortify Refer Here
Open Source Codes which we will be scanning
- Openmrs (Java) Refer Here
- Mezzazine (Python) Refer Here
- Nop Commerce .net Refer Here

By continuous learner

devops & cloud enthusiastic learner

View all of continuous learner's posts.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please turn AdBlock off

Animated Social Media Icons by Acurax Wordpress Development Company