DevSecOps

Runtime application self-protection & Containers (RASP) - Falco / Notary / The Update Framework (TUF) / Nikto

Software Composition Analysis (SCA)

Runtime application self-protection & Containers (RASP) - The Update Framework (TUF)

Runtime application self-protection & Containers (RASP) - Notary

Runtime application self-protection & Containers (RASP) - Falco

Software Composition Analysis (SCA) -  / Jfrog Xray

Software Composition Analysis (SCA) - OWASP Dependency Check

- Dynamic Application Security Testing (DAST) -  OWASP ZAP (Zed Attack Proxy) / Skipfish / Nmap / OpenVAS by Greenbone / Fortify WebInspect

Dynamic Application Security Testing (DAST) -  OWASP ZAP (Zed Attack Proxy)

Threat Models & Tools -  STRIDE / PASTA / VAST & Microsoft Threat Modeling Tool / OWASP Threat Dragon