Application Analysis with SonarQube

Focused View

George Smith

34:20

188 View

Exercise Files

sonarqube-application-analysis.zip

Module 1 - Course Overview (Tool Introduction)

1. Course Overview.mp4

01:57

Module 2 - Using SonarQube to Detect Vulnerabilities in Software

1. What Is SonarQube Anyway.mp4

08:39

2. Getting Started with SonarQube.mp4

03:24

3. Sample Project Walkthrough.mp4

05:03

4. Running an Analysis and Reviewing the Results.mp4

11:30

Module 3 - Resources

1. Resources.mp4

03:47

Description

This is the next step of your journey as a security professional. In this course, you'll learn how to hunt for vulnerabilities and hotspots based on MITRE's ATT&CK framework using SonarQube.

What You'll Learn?

SonarQube can detect bugs, code smells, vulnerabilities, and hot spots in over 25 programming languages. In this course, Application Analysis with SonarQube, you'll cover how to leverage SonarQube to discover vulnerabilities and hotspots in source code. First, you'll learn how to install and configure SonarQube. Next, you'll run a static analysis against a sample software project. You'll be looking for potential security weaknesses in the software. Then, you’ll operate the tool and run a static security scan of target code base. Finally, you’ll analyze the problems flagged by SonarQube and examine the suggested remediation steps. When you’re finished with this course, you’ll have the skills and knowledge to detect and eliminate vulnerabilities and hotspots in publicly facing applications with these techniques: code-base static security scanning and analysis using SonarQube.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Software Development

Network Security

Information Security

George Smith

Instructor's Courses

George Smith has spent more than 25 years in the IT industry. During this time he has held a variety of positions, starting with web UI development and business analysis, progressing with system administration and infrastructure, then switching to core systems programming, technical consulting, and finally becoming an E-Commerce Architect and Subject Matter Expert. He is well versed in modern trends like Containerization, Infrastructure as Code, Serverless computing models, and more. George demonstrates a passion for cutting-edge system design leveraging the latest in tech to help enterprises achieve their desired business results. He has recently published "IT Career Paths: Take the Helicopter" on Amazon KDP. George holds a Master in IT degree from Bentley University (Boston, MA) and Master in Business Administration from the University of Ottawa.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.