Build Complete DevSecOps Pipeline with Container Based Delivery, CI/CD on Kubernetes with all Open Source Tools
What you will learn
Get Instant Notification of New Courses on our Telegram channel.
Noteβ Make sure your ππππ¦π² cart has only this course you're going to enroll it now, Remove all other courses from the ππππ¦π² cart before Enrolling!
Understand the core principles of DevSecOps and how they integrate into modern software delivery pipelines.
Set up a complete learning environment using Google Cloud Platform, Kubernetes (GKE), and essential DevOps tools.
Build a secure CI/CD pipeline using Jenkins, Helm, Docker, and Kubernetes.
Implement Software Composition Analysis (SCA) using OWASP Dependency-Check, Pyraider, and Dependency-Track to identify and manage third-party risks.
Apply Static Application Security Testing (SAST) using tools like slscan and integrate them into your CI/CD pipeline.
Conduct Dynamic Application Security Testing (DAST) using OWASP ZAP during deployment stages to catch runtime vulnerabilities.
Harden container images using Dockle, Trivy, and multi-stage Dockerfiles to reduce the attack surface.
Manage sensitive credentials and enforce secure secrets injection using HashiCorp Vault with Kubernetes.
Enforce system-level compliance and infrastructure hardening using InSpec and Ansible as Compliance-as-Code tools.
Secure Kubernetes workloads by implementing security contexts, Pod security policies, resource limits, and runtime scanning tools like Falco.
Build and deploy AI/ML and containerized applications securely using GitOps practices with ArgoCD.
Automate runtime anomaly detection and remediation using Falco and Argo Workflows.
Understand the Software Bill of Materials (SBOM) and integrate SBOM generation into your pipeline.
Design an end-to-end secure DevOps pipeline for real-world applications, from code to production, with continuous security monitoring.
English
language