Popular with:
Developer
Application Security

4 Query Tools That Every Developer Should Know

Updated:
September 29, 2022
Written by
Abhay Bhargav

Have you noticed a predominant trend- that many infosec tools are now query tools? Query tools often allow you to utilize SQL, YAML, or some DSL to compose queries. The tool translates these queries into parameters supplied into some API for $environment, such as your operating system, cloud environment, source code, and so on, to generate findings. 

 

Here are some of my favorite query tools/ infosec labs that I think you should know about! 

While you’re at it, check out some of the best appsec labs for you to sharpen your skills.

 

1. Osquery:

Let's start with osquery. It is an outstanding query tool for the OS and one of the first I came across. osquery works across OS platforms and is widely used for DevOps, compliance, threat hunting, and other purposes. SQL allows you to query OS properties and configurations. 

 

2.  CodeQL

Next, we have CodeQL, which was the first to impress me in the SAST segment. This is also a SQL-based query tool parses the source code's AST (abstract syntax tree) to discover vulnerabilities based on the requested patterns. 

 

3. SemGrep:

In SAST, I've recently been loving Semgrep. It makes SAST extremely strong by combining the simplicity of grep expressions with YAML. Scaling SAST across a huge codebase becomes easier and more accurate with Semgrep's pattern syntax.  

 

4.Steampipe:

 Lastly, I've been highly impressed with Steampipe, which allows you to query your cloud environment for security flaws using SQL. I enjoy the pre-built rule sets they provide. 

 

I prefer query tools for security analysis since they allow me to utilize pre-made queries or write my own for the use cases I need and want. It equips me with speed and versatility, making it ideal for integrating into a pipeline. 

AppSec Training for Developers has never been easier, especially with our Hands-on appsec labs and playgrounds. Start with AppSec Essentials here!

Never Stop Learning!

Source for article
Abhay Bhargav

Abhay Bhargav

Abhay is a speaker and trainer at major industry events including DEF CON, BlackHat, OWASP AppSecUSA. He loves golf (don't get him started).

Abhay Bhargav

Categories

AI Security
Offensive Security
Container Security
Threat Modeling
Cloud Security
DevSecOps
Kubernetes
Application Security

Latest

All about Cloud related compliance and how to abide by them
The AI Advantage in Cloud Security
41 Thought Leaders in InfoSec to Watch in 2024
Your Ultimate Guide to Multi Cloud Security Training with AppSecEngineer
The Cybersecurity Professional's Guide to Kernel Exploits
The DNA of High-Performing Cybersecurity Teams
How AppSecEngineer helps in building a secure coding program for dev teams
The Impact and Importance of Secure Coding Training
Threat Modeling as a Critical Business Skill
The Rocky Path to Effective Threat Modeling Automation
Bridging the Gap to CISA Self Attestation with Threat Modeling
AI in the World of Threat Modeling
The Art of Secure Coding
Using VPC Peering and Cloud NAT to turbo charge your Cloud apps
The Need for Resilience, Adaptability, and Proactive Security Measures—The Need for DevSecOps
Key Vulnerabilities in Applications and How to Secure Them
Application Security Engineer Interview Questions
Application security and Types
The Hilarious Journey into Application Security
What is Application Security?
FOLLOW APPSECENGINEER
CONTACT

Contact Support

help@appsecengineer.com

1603 Capitol Avenue,
Suite 413A #2898,
Cheyenne, Wyoming 82001,
United States

Copyright AppSecEngineer © 2023