awesome-devsecops

Awesome list of DevSecOps Tools

Tools

SCA (Dependency Analysis)

DependencyCheck - Tool that searches for vulnerabilities in your dependencies by OWASP.
Snyk - CLI that finds vulnerabilities in your dependencies, supports various languages.

SAST (Source Code Analysis)

semgrep - Awesome tool that can highlight vulnerable code like a linter. Supports various languages.
bandit - finds security flaws in Python code.
brakeman - finds security flaws in Ruby on Rails code.
dawnscanner - finds security flaws in Ruby code.
GolangCI-Lint - finds vulnerabilities in Go code.
Security Code Scan - finds flaws in .NET code.

DAST (Dynamic Application Security Testing)

Nuclei - Web security scanning framework with a large community database of security checks.

SIEM (Security Event Management)

OSSIM - Free & Open Source Security Incident Event Management

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

awesome-devsecops

Tools

SCA (Dependency Analysis)

SAST (Source Code Analysis)

DAST (Dynamic Application Security Testing)

SIEM (Security Event Management)

Secret Detection

Ressources

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

License

Escape-Technologies/awesome-devsecops

Folders and files

Latest commit

History

Repository files navigation

awesome-devsecops

Tools

SCA (Dependency Analysis)

SAST (Source Code Analysis)

DAST (Dynamic Application Security Testing)

SIEM (Security Event Management)

Secret Detection

Ressources

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Packages