CI/CD Pipeline Security
- Jenkins with OWASP Dependency Plugin
- GitLab Security Scans
- CircleCI or GitHub Actions with security steps
Secrets Management
- HashiCorp Vault
- AWS Secrets Manager
- Azure Key Vault
Code Analysis (SAST & SCA)
- SonarQube – Static code analysis
- Checkmarx – Source code security scanning
- Snyk – Open-source vulnerability scanning
- Black Duck – Software composition analysis
Container Security
- Aqua Security
- Twistlock (Prisma Cloud)
- Trivy
Dependency & Vulnerability Scanning
Monitoring Tools
Inquiry Now
