Tools
Infrastructure Tools
- Terraform and Ansible for IaC
- Kubernetes
- Ingress Controller - Nginx
- Docker and docker-compose (for local development)
- Artifact Repositories
- GAR
- GCR
- Azure Repo
- ECR
- Nexus
- Artifactory
- Velero for DR
- Web Servers - Nginx
- LoadBalancers - HA proxy / Nginx
- Secrets Manager
- Vault
- AWS KMS
- GCP
- Azure Secrets
- Chaos Engineering - gremlin
- Documentation tool - Confluence
- Project Management tool - JIRA
- Communication tool - Slack / Google chats
VCS Tools
- Code Repository
- GitHub
- GitLab
- BitBucket
- AWS CodeCommit
- Code Standardization
- Pre-commit hooks
- detect-aws-credentials
- detect-private-key
- Formatter - black (for python), etc
- Static Code Analysis
- SonarQube / CodeScene
- Linters (based on coding languages)
- Dependabot (github / gitlab)
CI Tools
- Jenkins
- Secret Scanning - GitLeaks
- Creds Scanner - Trivy
- Security Vulnerability - Bandit
- SAST
- Open Source
- Bandit
- Brakeman
- Checkmarx CxSAST with Limited Functionalities
- Flawfinder
- SonarQube
- pylint-secure-coding-standard
- SpotBugs (Find Security Bug Plugin)
- Enterprise
- Checkmarx CxSAST
- Kiuwan
- Veracode
- Fortify
- Coverity
- IBM Security AppScan
- CAST
- Qualys - IT Security and Compliance Platform | Qualys, Inc.
- RedHat Advanced Cluster Security For Kubernetes (only K8s)
- Open Source
- SCA
- Open Source
- OWSAP Dependency-Check
- Retire.js
- CycloneDX
- OSS Review Toolkit (ORT)
- Licenses Golang Package
- Enterprise
- Black Duck
- WhiteSource
- Aqua Trivy
- JFrog Xray
- FOSSA
- Snyk
- Sonatype Nexus Lifecycle
- RedHat Advanced Cluster Security For Kubernetes (Only K8s)
- Veracode Software Composition Analysis
- Open Source
- DAST
- Open source - OWASP ZAP
- Enterprise - Acunetix
- License Scanner - License Finder
- Web App Security - OSWAP
- Unit Tests
- Code Coverage
CD Tools
- Jenkins
- Deployment patterns
- Canary releases
- A/B testing
- Vulnerability scanning
- Rollbacks
- Selenium
Monitoring Tools
- Prometheus
- Grafana
- Alertmanager
- Service mesh - Istio + kiali
- APM - Elastalert (free) / newrelic / datadog
- Distributed tracing - Jaeger
Logging Tools
- Elasticsearch + Kibana or Grafana Loki
- Forwarders - Filebeat / Fluentd / Fluentbit / Logstash
- Sentry - Application exception management and error tracking tool
DB Tools
- New age DBs - MongoDB / Elasticsearch / Cassandra / Redis
- CDC Tool - Debezium / flyway
- Event driven system - Kafka
- Data Warehouses - BigQuery / Redshift / Clickhouse / Databricks
- Visualization tools - Metabase / Tableau / PowerBI
- DB migration tools - Liquibase / Flyway
Modernization Tools
- Airflow
- Identity management - Keycloak / Active Directory
Security Tools
- WAF and VPN
- SSO and JWT
- Security Audits - AWS Audit Manager / ScoutSuite