Posts about

Tools (2)

Integrate NPM Audit into CI/CD

What is NPM Audit? The 'audit' command of the 'npm' tool is a built-in security feature to Node Package Manager. It checks the current version of the...

Find out more

Integrating NodeJSScan into CI/CD

What is nodejsscan? NodeJsScan is an open source static code scanner used to find security flaws specifically in Node.js applications. It is powered...

Find out more

Integrating Veracode SAST, DAST, and SCA, into CI/CD

What is Veracode? Veracode is a commercial provider of software security testing tools, based in the cloud, that includes static code analysis,...

Find out more

Integrate SSLYze into CI/CD

What is SSLYze? SSlyze is a great open source tool for checking a website or servers SSL/TLS certificates. It checks the SSL/TLS configuration of a...

Find out more

Integrate SQLMap into CI/CD

What is SQLMap? It is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking...

Find out more

Integrate Nikto2 into CI/CD

What is Nikto2? Nikto is an open source dynamic web server scanner which performs comprehensive tests against web servers for multiple items,...

Find out more

Integrate Fortify on Demand into CI/CD

What is Fortify on Demand? Fortify on Demand is the online service provided by the Uleska partner Micro Focus which incorporates their static (Static...

Find out more

Integrate OWASP Dependency Check into CI/CD

What is OWASP Dependency Checker? Dependency Check is a popular open-source security scanning tool from OWASP and Jeremy Long.  Dependency Check is...

Find out more

Integrate Burpsuite into CI/CD

What is Burpsuite? Burpsuite is one of the most popular security tools used by security teams to find issues in a running website or system....

Find out more

Integrate Bandit into CI/CD

Find out more
1 2