Automated Security Testing with OWASP Zed Attack Proxy: #1 Installing & Configuring OWASP ZAP on an Azure Virtual Machine

OWASP Zed Attack Proxy (ZAP) is a free security tool that helps you automatically find security vulnerabilities in your web applications. It is one of the most popular tools out there and it's actively maintained by the community behind it. It’s a great tool that you can integrate while you are developing and testing your … Continue reading Automated Security Testing with OWASP Zed Attack Proxy: #1 Installing & Configuring OWASP ZAP on an Azure Virtual Machine

Advertisements

Continuous Code Quality with SonarQube: #2 Configuring SSL for SonarQube & Securing the SonarQube Server Behind a Reverse Proxy

In the previous article, Installing and Configuring SonarQube using Azure Virtual Machines and Azure SQL, we installed SonarQube on an Azure Virtual Machine and configured an Azure SQL Database for the SonarQube server. At the moment, the SonarQube dashboard is not accessible for the outside world. In this article, we’ll setup a reverse proxy to … Continue reading Continuous Code Quality with SonarQube: #2 Configuring SSL for SonarQube & Securing the SonarQube Server Behind a Reverse Proxy

Continuous Code Quality with SonarQube: #1 Installing and Configuring SonarQube using Azure Virtual Machine & Azure SQL

SonarQube a product by SonarSource, is an open source platform that can be used to manager source code quality for development teams. SonarQube is a great product that you can integrate with your existing build pipelines to analyze your code base and find bugs, vulnerabilities, code smells and manage the technical debt of your source … Continue reading Continuous Code Quality with SonarQube: #1 Installing and Configuring SonarQube using Azure Virtual Machine & Azure SQL

Fix ‘Subject Alternative Name Missing [missing_subjectAltName]’ issue in Chrome with Self-Signed Certificates using OpenSSL

After the release of Chrome v58 Common Name (CN) support is removed for SSL Certificates. Instead SSL Certificates required to have Subject Alternative Name (SAN). When you are using Self-Signed Certificates, this becomes a problem if you really want to get rid of the Red Not Secure flag and warnings put out by chrome when … Continue reading Fix ‘Subject Alternative Name Missing [missing_subjectAltName]’ issue in Chrome with Self-Signed Certificates using OpenSSL

Team Project Wiki in Visual Studio Team Services: First Look

Team Project Wiki was rolled out for Visual Studio Team Services a couple of days back as a preview feature. For me this is a much-anticipated feature that felt missing and this would be a first look in to Team Project Wiki in Visual Studio Team Services. Navigate to your Visual Studio Team Services account … Continue reading Team Project Wiki in Visual Studio Team Services: First Look

Azure Functions: Going Serverless on Azure Platform – #3 Creating a Function Pipeline Using the Azure Portal – Part II

Part 1 of this article can be found by navigating to the following link. Going Serverless on Azure Platform - #3 Creating a Function Pipeline Using the Azure Portal  - Part I In the last article of the Azure Functions: Going Serverless on Azure Platform series, we created the first function ReceiveNotification, which is the … Continue reading Azure Functions: Going Serverless on Azure Platform – #3 Creating a Function Pipeline Using the Azure Portal – Part II

Azure Functions: Going Serverless on Azure Platform – #3 Creating a Function Pipeline Using the Azure Portal – Part I

In the last article of the Azure Functions: Going Serverless on Azure Platform series, we created a Function App on the Azure Portal and walked through the Function App UI and the features provided by the Function Apps. In this article, we will create our first azure function on the Azure Portal. We will create … Continue reading Azure Functions: Going Serverless on Azure Platform – #3 Creating a Function Pipeline Using the Azure Portal – Part I