DevSecOps: Adding Security Testing Tools to Pipelines

AED 15

12 hours left at this price!

ST16MT70224 is applied
Advancity coupon

Published 2025-04-24
Location Online
Duration 2h 4s

What you'll learn

Automated security testing can be daunting to start with. This course will teach you which tools you can easily implement into your existing CI/CD pipelines and what results can be expected with each tool.

This course includes:

Course Overview

1m 55s

Course Overview | 1m 55s

Initializing the Setup for Automated Security Testing

20m 20s

Introduction to Adding Security Testing Tools to Pipelines | 7m 25s
Demo: Setting up a GitLab Demo Lab | 5m 15s
Demo: Adding Juice Shop to GitLab | 4m 1s
Demo: Creating a Build Pipeline for Juice Shop | 2m 35s
Module Summary | 1m 3s

Detecting Secrets in Code

15m 6s

Introduction to Detecting Secrets in Code | 3m 44s
Demo: Creating a Secrets Baseline | 4m 35s
Demo: Adding Detect-secrets to Pipeline | 5m 39s
Summarizing Detecting Secrets in Code | 1m 6s

Performing Dockerfile Linting using Hadolint

7m 52s

Introduction to Performing Dockerfile Linting Using Hadolint | 2m 21s
Demo: Performing Dockerfile Linting Using Hadolint | 4m 24s
Summarizing Performing Dockerfile Linting Using Hadolint | 1m 6s

Performing Static Application Security Testing Using njsscan

6m 52s

Introduction to Performing Static Application Security Testing Using njsscan | 1m 35s
Demo: Performing Static Application Security Testing Using njsscan | 3m 58s
Summarizing Performing Static Application Security Testing Using njsscan | 1m 18s

Performing Static Application Security Testing Using SonarQube

13m

Introduction to Performing Static Application Security Testing Using SonarQube | 1m 53s
Demo: Installing and Configuring SonarQube | 5m 18s
Demo: Adding SonarQube to Pipeline | 4m 35s
Summarizing Performing Static Application Security Testing Using SonarQube | 1m 13s

Performing Software Composition Analysis Using OWASP Dependency-Check

9m 30s

Introduction to Performing Software Composition Analysis Using Dependency-Check | 1m 43s
Demo: Adding Dependency-Check to Pipeline | 6m 24s
Summarizing Performing Software Composition Analysis Using Dependency-Check | 1m 22s

Detecting Vulnerabilities in Third-party Libraries Using Software Bill of Materials and OWASP Dependency-Track

14m 49s

Introduction to Dependency-Track | 2m 1s
Demo: Installing and Configuring Dependency-Track | 5m
Demo: Adding Dependency-Track to Pipeline | 5m 53s
- Module Summary | 1m 54s
Detecting Vulnerabilities in Images Using Trivy

6m 26s
Introduction to Detecting Vulnerabilities in Images | 1m 15s
Demo: Adding Trivy to Pipeline | 4m 4s
Summarizing Detecting Vulnerabilities in Images | 1m 6s

Performing Dynamic Application Security Testing Using OWASP ZAP

8m 51s

Introduction to Dynamic Application Security Testing | 1m 22s
Demo: Adding ZAP to Pipeline | 6m 22s
Summarizing Dynamic Application Security Testing | 1m 5s

Performing Dynamic Application Security Testing Using Nikto

6m 1s

Introduction to Nikto | 1m
Demo: Adding Nikto to Pipeline | 4m 2s
Summarizing Nikto | 59s

Performing Full Automated Security Testing in a Pipeline

9m 16s

Introduction to Interoperability | 1m 37s
Demo: Putting It All Together | 5m 21s
Module and Course Summary | 2m 17s