Complete List of Top DevSecOps Tools

Vulnerability Scanning tools:

• Nessus,
• OpenVAS,
• Qualys,
• Rapid7,
• Tenable,
• Netsparker.

Application Security tools:

• OWASP ZAP,
• Burp Suite,
• Qualys WAS,
• IBM AppScan,
• Checkmarx,
• SonarQube.

Security Testing tools:

• Metasploit,
• Nmap,
• Kali Linux,
• Wireshark,
• Nikto,
• Hydra.

Threat Intelligence tools:

• AlienVault,
• Anomali,
• Recorded Future,
• ThreatConnect,
• ThreatQuotient,
• FireEye.

Security Information and Event Management (SIEM) tools:

• Splunk,
• ELK Stack,
• QRadar,
• LogRhythm,
• Graylog,
• ArcSight.

Cloud Security tools:

• Dome9,
• CloudPassage,
• Azure Security Center,
• AWS Security Hub,
• CloudCheckr, CloudTrail.

Container Security tools:

• Anchore,
• Aqua Security,
• Sysdig,
• Twistlock,
• NeuVector,
• Prisma Cloud.

Access Control tools:

• Okta,
• Duo,
• Ping
• Identity,
• OneLogin,
• Microsoft Identity Manager,
• RSA SecurID.

Encryption and Key Management tools:

• HashiCorp Vault,
• Venafi,
• Keyfactor,
• Thales eSecurity,
• nCipher, Gemalto.

Compliance Management tools:

• Chef Compliance,
• AWS Config,
• Puppet,
• Ansible,
• HashiCorp Sentinel,
• Sysdig Secure.

Security Automation and Orchestration tools:

• Demisto,
• Phantom,
• Swimlane,
• SecOps Response,
• CyberSponse,
• FireEye Helix.

Identity and Access Management (IAM) tools:

• Azure Active Directory,
• AWS IAM,
• ForgeRock,
• SailPoint,
• CyberArk,
• IBM Security Identity and Access Manager.

Security Analytics tools:

• IBM QRadar,
• LogRhythm,
• Splunk,
• Elastic Security,
• Exabeam,
• Securonix.

Incident Response tools:

• Carbon Black,
• FireEye,
• CrowdStrike,
• Cybereason,
• Symantec Endpoint Protection,
• McAfee Endpoint Security.

DevOps Security Integration tools:

• Jenkins,
• GitLab,
• CircleCI,
• Travis CI,
• GitHub,
• Bamboo.

Data Security tools:

• Varonis,
• IBM Guardium,
• Informatica,
• Symantec Data Loss Prevention,
• Voltage SecureData,
• Digital Guardian.

Security Configuration Management tools:

• Ansible,
• Chef,
• Puppet,
• SaltStack,
• AWS Config,
• HashiCorp Terraform.

Continuous Security Testing tools:

• Veracode,
• Micro Focus Fortify,
• Checkmarx,
• Qualys WAS,
• Contrast Security,
• WhiteHat Security.

Threat Modeling tools:

• Microsoft Threat Modeling Tool,
• IriusRisk,
• ThreatModeler,
• Synopsys Software Integrity Platform,
• Secure Code Warrior.

Security Awareness and Training tools:

• KnowBe4,
• SANS Security Awareness,
• Infosec,
• Security Mentor,
• Mimecast,
• Inspired eLearning.

Compliance Automation tools:

• Chef Compliance,
• AWS Config,
• Puppet,
• Ansible,
• HashiCorp Sentinel,
• Sysdig Secure.

Incident Management tools:

• PagerDuty,
• VictorOps,
• OpsGenie,
• xMatters,
• Squadcast,
• AlertOps.

Risk Assessment tools:

• RSA Archer,
• MetricStream,
• Lockpath,
• OneTrust,
• LogicManager,
• Resolver.

Security Code Review tools:

• Snyk,
• WhiteSource,
• Sonatype,
• Black Duck,
• Veracode,
• Checkmarx.

Security Governance tools:

• RSA Archer,
• MetricStream,
• Lockpath,
• OneTrust,
• LogicManager,
• Resolver.

Compliance Reporting tools:

• Tripwire Enterprise,
• AlienVault,
• SolarWinds Log & Event Manager,
• McAfee ePolicy Orchestrator,
• IBM QRadar,
• QualysGuard Policy Compliance.

Cloud Access Security Broker (CASB) tools:

• Bitglass,
• Netskope,
• Skyhigh Networks,
• CipherCloud,

Rajesh Kumar

I’m a DevOps/SRE/DevSecOps/Cloud Expert passionate about sharing knowledge and experiences. I have worked at Cotocus. I share tech blog at DevOps School, travel stories at Holiday Landmark, stock market tips at Stocks Mantra, health and fitness guidance at My Medic Plus, product reviews at TrueReviewNow , and SEO strategies at Wizbrand.

Do you want to learn Quantum Computing?

Please find my social handles as below;

Rajesh Kumar Personal Website
Rajesh Kumar at YOUTUBE
Rajesh Kumar at INSTAGRAM
Rajesh Kumar at X
Rajesh Kumar at FACEBOOK
Rajesh Kumar at LINKEDIN
Rajesh Kumar at WIZBRAND

Rajesh Kumar DailyLogs