Skip to Content
Hands-On Security in DevOps
book

Hands-On Security in DevOps

by Tony Hsiang-Chih Hsu
July 2018
Intermediate to advanced
356 pages
9h 18m
English
Packt Publishing
Content preview from Hands-On Security in DevOps

Questions

  1. Which of the following is not the input of whitebox review?
    1. Source code
    2. Threat-modeling documents
    3. Automated static code analysis results
    4. Antivirus scanning results
  2. What are the tools doxygen and naturaldocs used for?
    1. Generating documents directly from source code
    2. Static code scanning
    3. Dynamic code scanning
    4. Reverse engineering
  3. Which of the following are high-risk modules?
    1. Authentication
    2. Authorization
    3. API interfaces
    4. All of the above
  4. Which one of the following APIs is not related to buffer overflow?
    1. strcpy
    2. strncat
    3. memcpy
    4. fwrite
  5. What can cause missing authentication?
    1. The uses of partial URL match API to determine the need for authentication such as StartsWith and EndsWith
    2. No path canonicalization before validation
    3. No ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Securing DevOps

Securing DevOps

Julien Vehent
Kubernetes Security

Kubernetes Security

Liz Rice, Michael Hausenblas
Three Essentials for Agentic AI Security

Three Essentials for Agentic AI Security

Paolo Dal Cin, Daniel Kendzior, Yusof Seedat, Renato Marinho
Security Automation with Ansible 2

Security Automation with Ansible 2

Akash Mahajan, MADHU AKULA

Publisher Resources

ISBN: 9781788995504Other