{"id":33717,"date":"2023-05-03T07:06:11","date_gmt":"2023-05-03T07:06:11","guid":{"rendered":"https:\/\/www.devopsschool.com\/blog\/?p=33717"},"modified":"2023-05-03T07:06:13","modified_gmt":"2023-05-03T07:06:13","slug":"30-comprehensive-list-of-tools-category-in-devsecops","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/blog\/30-comprehensive-list-of-tools-category-in-devsecops\/","title":{"rendered":"30 comprehensive list of tools category in DevSecOps"},"content":{"rendered":"\n
    \n
  1. Vulnerability Scanning tools: Nessus, OpenVAS, Qualys, Rapid7, Tenable, Netsparker.<\/li>\n\n\n\n
  2. Application Security tools: OWASP ZAP, Burp Suite, Qualys WAS, IBM AppScan, Checkmarx, SonarQube.<\/li>\n\n\n\n
  3. Security Testing tools: Metasploit, Nmap, Kali Linux, Wireshark, Nikto, Hydra.<\/li>\n\n\n\n
  4. Threat Intelligence tools: AlienVault, Anomali, Recorded Future, ThreatConnect, ThreatQuotient, FireEye.<\/li>\n\n\n\n
  5. Security Information and Event Management (SIEM) tools: Splunk, ELK Stack, QRadar, LogRhythm, Graylog, ArcSight.<\/li>\n\n\n\n
  6. Cloud Security tools: Dome9, CloudPassage, Azure Security Center, AWS Security Hub, CloudCheckr, CloudTrail.<\/li>\n\n\n\n
  7. Container Security tools: Anchore, Aqua Security, Sysdig, Twistlock, NeuVector, Prisma Cloud.<\/li>\n\n\n\n
  8. Access Control tools: Okta, Duo, Ping Identity, OneLogin, Microsoft Identity Manager, RSA SecurID.<\/li>\n\n\n\n
  9. Encryption and Key Management tools: HashiCorp Vault, Venafi, Keyfactor, Thales eSecurity, nCipher, Gemalto.<\/li>\n\n\n\n
  10. Compliance Management tools: Chef Compliance, AWS Config, Puppet, Ansible, HashiCorp Sentinel, Sysdig Secure.<\/li>\n\n\n\n
  11. Security Automation and Orchestration tools: Demisto, Phantom, Swimlane, SecOps Response, CyberSponse, FireEye Helix.<\/li>\n\n\n\n
  12. Identity and Access Management (IAM) tools: Azure Active Directory, AWS IAM, ForgeRock, SailPoint, CyberArk, IBM Security Identity and Access Manager.<\/li>\n\n\n\n
  13. Security Analytics tools: IBM QRadar, LogRhythm, Splunk, Elastic Security, Exabeam, Securonix.<\/li>\n\n\n\n
  14. Incident Response tools: Carbon Black, FireEye, CrowdStrike, Cybereason, Symantec Endpoint Protection, McAfee Endpoint Security.<\/li>\n\n\n\n
  15. DevOps Security Integration tools: Jenkins, GitLab, CircleCI, Travis CI, GitHub, Bamboo.<\/li>\n\n\n\n
  16. Data Security tools: Varonis, IBM Guardium, Informatica, Symantec Data Loss Prevention, Voltage SecureData, Digital Guardian.<\/li>\n\n\n\n
  17. Security Configuration Management tools: Ansible, Chef, Puppet, SaltStack, AWS Config, HashiCorp Terraform.<\/li>\n\n\n\n
  18. Continuous Security Testing tools: Veracode, Micro Focus Fortify, Checkmarx, Qualys WAS, Contrast Security, WhiteHat Security.<\/li>\n\n\n\n
  19. Threat Modeling tools: Microsoft Threat Modeling Tool, IriusRisk, ThreatModeler, Synopsys Software Integrity Platform, Secure Code Warrior.<\/li>\n\n\n\n
  20. Security Awareness and Training tools: KnowBe4, SANS Security Awareness, Infosec, Security Mentor, Mimecast, Inspired eLearning.<\/li>\n\n\n\n
  21. Compliance Automation tools: Chef Compliance, AWS Config, Puppet, Ansible, HashiCorp Sentinel, Sysdig Secure.<\/li>\n\n\n\n
  22. Incident Management tools: PagerDuty, VictorOps, OpsGenie, xMatters, Squadcast, AlertOps.<\/li>\n\n\n\n
  23. Risk Assessment tools: RSA Archer, MetricStream, Lockpath, OneTrust, LogicManager, Resolver.<\/li>\n\n\n\n
  24. Security Code Review tools: Snyk, WhiteSource, Sonatype, Black Duck, Veracode, Checkmarx.<\/li>\n\n\n\n
  25. Security Governance tools: RSA Archer, MetricStream, Lockpath, OneTrust, LogicManager, Resolver.<\/li>\n\n\n\n
  26. Compliance Reporting tools: Tripwire Enterprise, AlienVault, SolarWinds Log & Event Manager, McAfee ePolicy Orchestrator, IBM QRadar, QualysGuard Policy Compliance.<\/li>\n\n\n\n
  27. Cloud Access Security Broker (CASB) tools: Bitglass, Netskope, Skyhigh Networks, CipherCloud,<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":"","_joinchat":[],"footnotes":""},"categories":[2],"tags":[],"class_list":["post-33717","post","type-post","status-publish","format-standard","hentry","category-uncategorised"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/33717","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/comments?post=33717"}],"version-history":[{"count":1,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/33717\/revisions"}],"predecessor-version":[{"id":33718,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/33717\/revisions\/33718"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/media?parent=33717"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/categories?post=33717"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/tags?post=33717"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}