D

devsecops

Probably the most modern and sophisticated insecure web application!

Clone of OWASP Juice Shop with GitLab branding and more.

Learn more by seeing our DevSecOps Tutorial

This Git repository serves as a valuable resource for centralizing Kubernetes manifests and automating GitOps workflows using Argo CD.

This POC evaluates the HUGO static site generator framework for potential adoption in our infrastructure documentation projects.

This platform takes a satirical approach to the HR system, offering a humorous yet insightful perspective on navigating salary negotiations and understanding the intricacies of workplace compensation.

The purpose of this POC is to perform a comprehensive proof of concept of the entire process, from development to deployment.

This platform is designed to simplify the resignation process by providing a structured and professional way to craft resignation letters.

This repository provides a Terraform framework for managing multiple infrastructure projects through a centralized, reusable architecture.

This Git repository serves as a valuable resource for managing Automations and associated scripts, like backups script, synchronization, etc.

This Git repository serves as a valuable resource for managing Dockerfiles and associated scripts.

SPM (Shell Package Manager) is a tool designed to manage shell-based applications and libraries.

This project sets up Static Application Security Testing (SAST) in a GitLab CI/CD pipeline using two tools:

NJSScan → A security scanner specialized for JavaScript applications. It analyzes source code and flags insecure coding patterns and vulnerabilities.

Semgrep → A lightweight, multi-language static analysis tool that uses rulesets (such as p/javascript) to detect vulnerabilities, insecure practices, and style issues across different programming languages.

This project demonstrates how to integrate GitLeaks for secrets scanning into a GitLab CI pipeline, along with a Git pre-commit hook.

This project focuses on an automated certificate generation service powered by Ansible playbooks.

This project provides a comprehensive infrastructure-as-code solution using Ansible.

This project serves two main purposes: Infrastructure Documentation and Cursor AI Experimentation.

AI DevSecOps Serverless Scanners.

Damn Vulnerable NodeJS Application used as a POC for upcoming DevSecOps pipeline.