DevOpspertise

Everything related to DevOps and the cloud.

Software Bill of Materials (SBOM) Reporting

We can track dependencies, libraries, open source components and licenses that are present in the environment by integrating SBOM generation into our build pipelines.

Open Worldwide Application Security Project (OWASP) Dependency-Check

We integrate OWASP Dependency-Check into an Azure pipeline without the use of a marketplace extension.

Open Worldwide Application Security Project (OWASP) Zed Attack Proxy (ZAP) Automated Penetration Testing

We'll delve into setting up an Azure pipeline to integrate OWASP ZAP scans into your development process, ensuring the better security of your web applications.

Azure Pipelines – Route Table Creation

We will setup an Azure DevOps pipeline that runs on a schedule. The pipeline will execute a PowerShell script that looks for the latest ServiceTags file from Microsoft. The script will create a new Route Table and apply it to subnets specified.

Azure Classic Pipelines – IIS Deployments Using Deployment Groups

In this post we will walk through an automated Internet Information Services (IIS) deployment using Deployment Groups in Azure DevOps.

Azure Pipelines – IIS Deployments Using Environments

In this post we will walk through an automated Internet Information Services (IIS) deployment using Environments in Azure DevOps.

Microsoft Azure – Security Center Just-in-time Deep Dive

Just-in-time (JIT) is used to secure inbound traffic to your Azure Virtual Machines, reducing exposure to attacks while providing an easy to use mechanism to connect to Virtual Machines (VM) when required