Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Security Automation with Ansible 2 Leverage Ansible 2 to automate complex security tasks like application security, network security, and malware analysis

Product type Paperback

Published in Dec 2017

Publisher Packt

ISBN-13 9781788394512

Length 364 pages

Edition 1st Edition

Tools

Ansible

Concepts

Application Security

Authors (2):

Akash Mahajan

MADHU AKULA

View More author details

Table of Contents (12) Chapters

Preface

1. Introduction to Ansible Playbooks and Roles FREE CHAPTER

2. Ansible Tower, Jenkins, and Other Automation Tools

3. Setting Up a Hardened WordPress with Encrypted Automated Backups

4. Log Monitoring and Serverless Automated Defense (Elastic Stack in AWS)

5. Automating Web Application Security Testing Using OWASP ZAP

6. Vulnerability Scanning with Nessus

7. Security Hardening for Applications and Networks

8. Continuous Security Scanning for Docker Containers

9. Automating Lab Setups for Forensics Collection and Malware Analysis

10. Writing an Ansible Module for Security Testing

11. Ansible Security Best Practices, References, and Further Reading

Log Monitoring and Serverless Automated Defense (Elastic Stack in AWS)

Log monitoring is the perfect place to think about security automation. For monitoring to be effective, a few things need to happen. We should be able to move logs from different devices to a central location. We should be able to make sense of what a regular log entry is and what could possibly be an attack. We should be able to store the logs, and also operate on them for things such as aggregation, normalization, and eventually, analysis.

But, before diving into setting up the stack and building centralized logging and monitoring using Elastic Stack, we need to understand a little bit about why we need to use and automate the setup for defending against near real-time attacks. It's difficult to be a jack-of-all-trades. Traditional logging systems find it difficult to log for all applications, systems...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at R$50/month. Cancel anytime

Authors (2)

Akash Mahajan

Akash Mahajan is an accomplished security professional with over a decade's experience in providing specialist application and infrastructure consulting services at the highest levels to companies, governments, and organizations around the world. He has lots of experience in working with clients to provide innovative security insights that truly reflect the commercial and operational needs of the organization, from strategic advice to testing and analysis to incident response and recovery. He is an active participant in the international security community and a conference speaker both individually, as chapter lead of the Bangalore chapter of OWASP the global organization responsible for defining the standards for web application security and as a co-founder of NULL India's largest open security community. Akash runs Appsecco, a company focused on Application Security. He authored the book Burp Suite Essentials published by Packt Publishing in November 2014, which is listed as a reference by the creators of Burp Suite.

See other products by Akash Mahajan

AKULA

Madhu Akula is a cloud native security researcher with extensive experience in cloud, containers, Kubernetes, and automation security. He frequently speaks and trains at security conferences around the world, including DEFCON, BlackHat, USENIX, Github, OWASP Appsec, AllDayDevOps, DevSecCon, Nullcon, and c0c0n. His research has identified vulnerabilities in 200+ companies and products like Google, Microsoft, AT&T, Wordpress, Ntop, and Adobe. He is a co-author of Security Automation with Ansible 2, a book that is listed as a technical resource by Red Hat. Madhu is an active member of international security, DevOps, and CloudNative communities and holds industry certifications like OSCP and CKA.

See other products by AKULA