DevOps Articles

DevSecOps: CI/CD Web application testing using Jenkins and OWASP ZAP.

In a development environment, developers work on building applications using a native code language and share it on GitHub for other developers in a team to review, strengthen, and expand the application. During the process, periodic testing of the software is performed to ensure the product functionality and robustness of application against cyber attacks. How can development and other operations be achieved in a time-efficient fashion?DevSecOps is a set of practices that work to automate and integrate the processes between software development and IT teams, so they can build, test, and release applications faster and more reliably.

Input a username and password of your choice to login from jenkins to host the web application.

To build a complex pipeline using multiple agents, GROOVY script is used to write the pipeline configurations.Similar to OWASP zap, Burp Suite Enterprise Editioncan be integrated with jenkins to perform web application security testing.