DEV Community: Dr. Swarup Kumar Sahoo The latest articles on DEV Community by Dr. Swarup Kumar Sahoo (@drsahoo). https://dev.to/drsahoo https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F501774%2F6816ec06-415a-444f-ac64-2d3ac99e2812.jpeg DEV Community: Dr. Swarup Kumar Sahoo https://dev.to/drsahoo en Open Source Tool Deepfence SecretScanner to Detect Secrets and Reduce Attack Surface Dr. Swarup Kumar Sahoo Thu, 18 Feb 2021 14:39:16 +0000 https://dev.to/drsahoo/open-source-tool-deepfence-secretscanner-to-detect-secrets-and-reduce-attack-surface-225m https://dev.to/drsahoo/open-source-tool-deepfence-secretscanner-to-detect-secrets-and-reduce-attack-surface-225m <p>We have released an open source tool <a href="https://github.com/deepfence/SecretScanner">SecretScanner</a> to scan container images and hosts for finding any potential passwords and secrets automatically before deploying your cloud native workloads. </p> <p>In addition to Vulnerabilities, secrets form an important part of your attack surface. Leakage of secrets can put your organization into serious security risk. Our <a href="https://github.com/deepfence/SecretScanner">SecretScanner</a> tool will help you to reduce your attack surface and protect your infrastucture. Check out our <a href="https://medium.com/deepfence-cloud-native-security/detecting-secrets-to-reduce-attack-surface-3405ee6329b5">blog</a> more more details.</p> security cloud serverless docker Observability and Security of Fargate Serverless Deployments Dr. Swarup Kumar Sahoo Sun, 24 Jan 2021 14:29:11 +0000 https://dev.to/drsahoo/observability-and-security-of-fargate-serverless-deployments-25mg https://dev.to/drsahoo/observability-and-security-of-fargate-serverless-deployments-25mg <p>While serverless platforms such as fargate are gaining popularity, securing them is a big challenge. In this article, we outline some of the issues in monitoring and securing fargate deployments.</p> <p><a href="https://medium.com/deepfence-cloud-native-security/observability-and-security-of-fargate-serverless-deployments-c9529a74b044">https://medium.com/deepfence-cloud-native-security/observability-and-security-of-fargate-serverless-deployments-c9529a74b044</a> </p> security serverless aws kubernetes Vulnerability Vs Exploitability - Leveraging Exploitability for Vulnerability Management Dr. Swarup Kumar Sahoo Thu, 29 Oct 2020 17:02:21 +0000 https://dev.to/drsahoo/vulnerability-vs-exploitability-leveraging-exploitability-for-vulnerability-management-io8 https://dev.to/drsahoo/vulnerability-vs-exploitability-leveraging-exploitability-for-vulnerability-management-io8 <p>Thousands of vulnerabilities are disclosed every month and developers get overwhelmed while managing so many vulnerabilities in their cloud infrastructure. Read our blog post on how Deepfence ThreatMapper helps developers and security analysts to prioritize and mitigate their most exploitable vulnerabilities in an efficient manner.</p> <p><a href="https://medium.com/deepfence-cloud-native-security/exploitability-vs-vulnerability-leveraging-exploitability-for-vulnerability-management-2c27b46eebf2">https://medium.com/deepfence-cloud-native-security/exploitability-vs-vulnerability-leveraging-exploitability-for-vulnerability-management-2c27b46eebf2</a></p> kubernetes devops security docker