Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Security Automation with Ansible 2 Leverage Ansible 2 to automate complex security tasks like application security, network security, and malware analysis

Product type Paperback

Published in Dec 2017

Publisher Packt

ISBN-13 9781788394512

Length 364 pages

Edition 1st Edition

Tools

Ansible

Concepts

Application Security

Authors (2):

Akash Mahajan

MADHU AKULA

View More author details

Table of Contents (12) Chapters

Preface

1. Introduction to Ansible Playbooks and Roles FREE CHAPTER

2. Ansible Tower, Jenkins, and Other Automation Tools

3. Setting Up a Hardened WordPress with Encrypted Automated Backups

4. Log Monitoring and Serverless Automated Defense (Elastic Stack in AWS)

5. Automating Web Application Security Testing Using OWASP ZAP

6. Vulnerability Scanning with Nessus

7. Security Hardening for Applications and Networks

8. Continuous Security Scanning for Docker Containers

9. Automating Lab Setups for Forensics Collection and Malware Analysis

10. Writing an Ansible Module for Security Testing

11. Ansible Security Best Practices, References, and Further Reading

Automating Web Application Security Testing Using OWASP ZAP

The OWASP Zed Attack Proxy (commonly known as ZAP) is one of the most popular web application security testing tools. It has many features that allow it to be used for manual security testing; it also fits nicely into continuous integration/continuous delivery (CI/CD) environments after some tweaking and configuration.

More details about the project can be found at https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project.

Open Web Application Security Project (OWASP) is a worldwide not-for-profit charitable organization focused on improving the security of software. Read more about OWASP projects and resources at https://www.owasp.org.

OWASP ZAP includes many different tools and features in one package. For a pentester tasked with doing the security testing of web applications, the following...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €18.99/month. Cancel anytime

Authors (2)

Akash Mahajan

Akash Mahajan is an accomplished security professional with over a decade's experience in providing specialist application and infrastructure consulting services at the highest levels to companies, governments, and organizations around the world. He has lots of experience in working with clients to provide innovative security insights that truly reflect the commercial and operational needs of the organization, from strategic advice to testing and analysis to incident response and recovery. He is an active participant in the international security community and a conference speaker both individually, as chapter lead of the Bangalore chapter of OWASP the global organization responsible for defining the standards for web application security and as a co-founder of NULL India's largest open security community. Akash runs Appsecco, a company focused on Application Security. He authored the book Burp Suite Essentials published by Packt Publishing in November 2014, which is listed as a reference by the creators of Burp Suite.

See other products by Akash Mahajan

AKULA

Madhu Akula is a cloud native security researcher with extensive experience in cloud, containers, Kubernetes, and automation security. He frequently speaks and trains at security conferences around the world, including DEFCON, BlackHat, USENIX, Github, OWASP Appsec, AllDayDevOps, DevSecCon, Nullcon, and c0c0n. His research has identified vulnerabilities in 200+ companies and products like Google, Microsoft, AT&T, Wordpress, Ntop, and Adobe. He is a co-author of Security Automation with Ansible 2, a book that is listed as a technical resource by Red Hat. Madhu is an active member of international security, DevOps, and CloudNative communities and holds industry certifications like OSCP and CKA.

See other products by AKULA