img

Want to know More?

Don’t Worry, We Will Explain You
Rupesh Saini

DevSecOps Engineer | RHCA | Corporate Trainer

know your mentor
img

This DevSecOps Course will Give You !!

3x Salary Package

Get 3x salary hike from your current package

Better Job Opportunities

Open doors to high-paying roles in DevSecOps, where demand is soaring

Faster Career Growth

Climb the career ladder quicker with specialized DevSecOps skills

Job Security & Stability

Ensure long-term employment security by becoming an essential part of any tech team

Are you the right candidate
for this course:-

  • Fresher Candidate, Who are looking to make their career in DevOps & DevOps Security
  • Anyone interested in mastering the blend of development, security, and operations will benefit from this course.
  • DevOps engineers looking to boost their security skills will find this course valuable.
  • This is great course for IT pros who want to switch to DevSecOps roles.
  • If you are looking a great opportunity in Security domain then this is the best course for you
  • For tech enthusiasts who want to learn how to protect digital innovations effectively.
img

How We Will Make You Expert

img
img
img
img
img
img
img
img

Our Mentors

img

Rupesh Saini

  • RedHat Certified Architect
  • RHCSA (v7, v9)
  • RedHat Certified Engineer
  • Certified Kubernetes Administrator (CKA)
  • Certified Kubernetes Security Specialist (CKS)
  • Red Hat Certified Specialist in Developing Automation with Ansible Automation Platform
  • RedHat Certified Specialist in Services and Automation
  • Redhat Certified Specialist in OpenShift Administration (v4.10 and v4.12)
  • Redhat certified in Virtualization
  • Redhat Certified specialist in Security
  • Redhat certified in Diagnostic & Troubleshooting (v7, v8)
  • CompTIA N+

DevSecOps Course Content

  • DevOps vs DevSecOps
  • Security Aspects Covered in Detail
  • Security Tools & Techniques Overview for DevSecOps

  • Overview of Physical Security
  • Protecting Disk with data from prevent physical attack on servers
  • Encrypt Filesystem using LUKS
  • Controlling Encryption & Decryption Process
  • Implementing NBDE for File System Decryption
  • Restricting USB Devices
  • Controlling USB access using USB Guard

  • AAA concept [ Authentication, Authorization, Auditing ]
  • Overview of DAC Security (Discretionary Access Control)
  • Securing User access right using Permission & ACL & Special Permission
  • Restricting Root Access using Restricted SUDO Privileges
  • Overview of MAC Security (Mandatory Access Control)
  • DAC v/s MAC
  • Implementing MAC Security using SELinux
  • Enabling SELinux From Disabled State
  • Make Sure Every Process runs in Correct Confined SELinux Domain
  • Controlling Access with Confined SELinux Users
  • AIDE Overview
  • Detecting & Security File System Changes using AIDE
  • OpenScap Overview
  • Scanning System from Vulnerabilities using OpenScap Policy
  • Customizing Scap Profile & Remediating Issues

  • Overview of Network Security
  • Encryption Explained
  • Symmetric v/s Asymmetric Encryption
  • SSL/TLS
  • Implementing & Securing Network Connections using SSL/TLS
  • Firewall Security Overview
  • Implement Firewall using IPTables
  • Iptables rules to restrict unwanted traffic
  • Advance Iptables Rules
  • Using firewalld in RPM based distribution
  • Securing system into network using rich rules
  • Advance rich rules in firewalld
  • Iptables v/s firewalld

  • Git Repository
  • Setting Practice Environment
  • Jenkins Introduction
  • Jenkins Plugin Installation
  • Checking Versions
  • Jenkins Installation
  • Understanding the Use case
  • Running Microservices on Local Machine & Cloud
  • Maven Basics
  • Jenkins GitHub Integration and Maven Build
  • Unit Tests Basics
  • Unit Test and JaCoCo
  • Jenkins Pipeline
  • Jenkins
  • Docker Basics
  • Docker Build and Push
  • Security Docker Daemon
  • Note on Kubernetes
  • Kubernetes Basics
  • Kubernetes Deployment
  • Kubernetes Deployment

  • Git Hooks and Talisman Introduction
  • Talisman Practical
  • Mutation Tests – PIT Basics
  • Mutation Tests – PIT [ Practical ]
  • SonarQube – SAST
  • SonarQube Practical
  • SonarQube – Quality Gate
  • SonarQube Authentication Clarification Practical
  • Vulnerabilities Basics
  • Dependency Check Basics
  • Dependency Check Practical
  • Refactoring Jenkins Practical
  • Dependency Check and Refactoring Jenkins
  • Trivy Basics
  • Trivy Image Scan – Docker – 1
  • Trivy Image Scan – Docker – 2
  • Trivy Image Scan HandsOn
  • OPA Conftest Basics
  • Practical – OPA Conftest – Docker
  • Kubernetes Security Concepts
  • Practical – OPA Conftest – Kubernetes
  • Practical – Kubernetes Deployment Rollout
  • Kubesec Basics
  • Kubesec Practical
  • Fixing Script and Read Only Root File System
  • Practical - Trivy – Kubernetes
  • Demo – Integration Tests
  • DAST Basics
  • OWASP ZAP Basics
  • Practical – OWASP ZAP
  • Practical – OWASP ZAP – Jenkins Scan
  • Practical – OWASP ZAP – Fixing Issue
  • Practical – OWASP ZAP – Ignore Test Cases
  • Practical – Slack Notification – Legacy App
  • Practical – OWASP and Slack Notification
  • Tools and Technologies for other Programming Languages

  • CIS Benchmarking and Kube-bench
  • Practical – Kube-bench
  • Kube-bench
  • Pod-Pod Communication – Need for mTLS
  • Istio – Basics
  • Demo – Istio Installation
  • Demo – Istio Injecting SideCar Container
  • Promoting App to Prod and Visualize using Kiali
  • Istio mTLS Basics
  • Practical – Istio mTLS
  • Istio Ingress Gateway and Virtual Service
  • Kubernetes Monitoring Basics
  • Prometheus Basics
  • Practical - Prometheus Grafana
  • Falco Basics
  • Falco Installation – View in Terminal
  • Falco UI – HELM
  • Falco Slack Notifications
  • Falco
  • KubeScan
  • Integration Tests – Prod
  • Slack Jenkins Custom App
  • Slack Attachments
  • Slack – Get Failed Stage Name
  • KubeScan Practical

  • Kubernetes Secrets & its Drawbacks
  • Demo – Vault Helm Installation
  • Demo – Vault Initialization
  • Demo – Vault Secrets Engine
  • Demo – Vault Authorization
  • Demo – Vault Authentication
  • Demo – Vault PHP Application
  • Demo – Vault Annotations & Template
  • Vault – How it works Internally?
  • Lab – Vault Kubernetes
  • Note: HashiCorp Vault

  • Kubernetes Architecture in Detail
  • Demo – Prometheus – Alert Manager – Installation
  • Demo – Prometheus – Alert Manager – Alerts – Slack Notifications