Category Archives: CI/CD

Find Security Bugs – SpotBugs plugin for Java

Find Security Bugs is a well-known plugin for security audits of Java web applications. the tool have a large list of rules to identify security

Astra – Automated Security Testing For REST API’s

REST API penetration testing is complex due to continuous changes in existing APIs and newly added APIs. Astra can be used by security engineers

kube-applier – Automated Deployment for Kubernetes

kube-applier is a service that enables continuous deployment of Kubernetes objects by applying declarative configuration files from a Git

huskyCI – Performing Security Tests Inside your CI

huskyCI is an open-source tool that orchestrates security tests inside CI pipelines of multiple projects and centralizes all results into a database

Kubernetes Goat – Vulnerable by Design Kubernetes Cluster

The Kubernetes Goat designed to be intentionally vulnerable cluster environment to learn and practice Kubernetes security.

PyUp – Tool to Update Project’s Dependencies

PyUp is a tool that you can use to scan private and public Python dependencies for updates, vulnerabilities. The tool maintains a comprehensive

BOtB – Container Analysis and Exploitation Tool

BOtB Break out the Box is a container analysis and exploitation tool designed to be used by pentesters and engineers while also being CI/CD friendly