Developer Security Cheat Sheet
Developer Support Options
Break/Fix: Contact the TAC if a Cisco API is not working as expected.
Consulting/Best Practices: Please use the DevNet Community to get general best practice help/tips/examples for using Cisco APIs.
One-on-One Consulting: Contact a Cisco development partner or contact your Cisco Sales teams for Professional Services options.
Start
Platforms and Applications
- AppDynamics - Ensure your code delivers the experience and functionality the business expects by optimizing performance across test, pre-production, and production environments.
- Application First Security - Empowers DevSecOps with end-to-end insight and control for every component of your applications — cloud and on-prem infrastructure, Kubernetes, runtime, and users.
- Calisti - This service mesh manager is an enterprise ready Istio platform for DevOps and SREs that automates lifecycle management and simplifies connectivity, security & observability for microservice-based applications. Calisti enables security, observability, traffic management for microservices and cloud native applications, and allows admins to switch between live and historical views.
- Cisco Cloud Security (includes both Umbrella and Cloudlock) - Umbrella is Cisco's cloud-based Secure Internet Gateway (SIG) platform that provides you with multiple levels of defense against internet-based threats. Umbrella integrates secure web gateway, firewall, DNS-layer security, and Cloudlock's cloud access security broker (CASB) functionality to protect your systems against threats.
- Cisco Defense Orchestrator - Cloud-based multi-device manager that facilitates management of security policies in highly distributed environments to achieve consistent policy implementation.
- Duo - Provides secure access to your applications and data, no matter where your users are – on any device; from anywhere, with adaptive Multi-Factor Authentication (MFA)
- Panoptica - Simplified Cloud-Native Application Security for DevSecOps, Platform, and DevOps teams. Panoptica makes it easy to secure your containers, APIs, and serverless functions, and manage software bills of materials.
- Secure Firewall (formerly 'Firepower') - Provides foundation for integrating threat prevention into existing network infrastructure.
- Secure Workload (formerly 'Tetration') - Protect workloads across any cloud, application, and workload--anywhere. Automate and implement a secure zero-trust model for micro-segmentation based on application behavior and telemetry.
- SecureX - Cross-product, cross-vendor security toolset that combines threat intelligence and defensive and response capabilities from multiple Cisco and third-party security and networking products.
APIs
- Cisco Security API Docs - Go straight to the Cisco Security API that fits your use case.
- Firepower Management Center (FMC) API - Manages Firepower Threat Defense and legacy Firepower devices through a Firepower Management Center.
- Identity Services Engine API - an identity and access control policy platform enabling enterprises to enforce compliance, enhance infrastructure security, and streamline their user network access operations.
- Security Cloud Analytics API (formerly 'Stealthwatch Cloud') - provides the actionable security intelligence and visibility necessary to identify various kinds of malicious activities in real time.
- Secure Endpoint API (formerly 'Advanced Malware Protection for Endpoints') - Allows users to expedite their investigations by identifying which endpoints have seen a file, create custom file lists, and move endpoints in and out of triage groups.
- Secure Network Analytics API (formerly "Stealthwatch Enterprise") - The most comprehensive visibility and network traffic security analytics solution that uses enterprise telemetry from the existing network infrastructure. It provides advanced threat detection, accelerated threat response, and simplified network segmentation using multilayer machine learning and entity modeling.
- Secure Malware Analytics (formerly 'Threat Grid') - the REST APIs allow users to submit samples for analysis as part of an investigation or research. The indicators and data from the analysis are indexed and searchable making it easy to use for triage, hunting, or threat intelligence.
- Umbrella APIs - Explore our new Umbrella APIs and get started with a free trial of Cisco Umbrella today.
Learn
Learning Labs
- Learning Lab Modules in 'Security' - DevNet Learning Labs are interactive tutorials and built-in development environments to learn faster.
- Threat Hunting with Cisco Security APIs - Get hands-on experience with a selection of Cisco Security APIs and programmable platforms. Complete the mission to perform an incident investigation and create the workflow around a threat hunting use case.
Sandboxes
Video and Webinars
- Cisco DevNet Security Automation by the Security Programmability Team (SPOT) - Weekly video series shows the art of the possible with Cisco's security portfolio. The goal is to showcase scenarios where it is an advantage to use available automation and programmability tools.
- Cisco Umbrella Videos - A video series to introduce security experts and developers to the Umbrella Enforcement and Umbrella Investigate REST APIs. No coding experience required.
- DevNet Security Webinar Series - Addresses the challenges that defenders are facing in the Cybersecurity world. Learn how these challenges can be overcome through integration and automation.