When you enroll through our links, we may earn a small commission—at no extra cost to you. This helps keep our platform free and inspires us to add more value.
Application Analysis with SonarQube
This is the next step of your journey as a security professional. In this course, you'll learn how to hunt for vulnerabilities and hotspots based on MITRE's ATT&CK framework using SonarQube.
This Course Includes
pluralsight
4 (89 reviews )
34 minutes 
english
Online - Self Paced
core courses
pluralsight
About Application Analysis with SonarQube
SonarQube can detect bugs, code smells, vulnerabilities, and hot spots in over 25 programming languages. In this course, Application Analysis with SonarQube, you'll cover how to leverage SonarQube to discover vulnerabilities and hotspots in source code. First, you'll learn how to install and configure SonarQube. Next, you'll run a static analysis against a sample software project. You'll be looking for potential security weaknesses in the software. Then, you’ll operate the tool and run a static security scan of target code base. Finally, you’ll analyze the problems flagged by SonarQube and examine the suggested remediation steps. When you’re finished with this course, you’ll have the skills and knowledge to detect and eliminate vulnerabilities and hotspots in publicly facing applications with these techniques: code-base static security scanning and analysis using SonarQube.
What You Will Learn?
- Course Overview (Tool Introduction) : 1min.
- Using SonarQube to Detect Vulnerabilities in Software : 28mins.
- Resources : 3mins.