Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Security Automation with Ansible 2 Leverage Ansible 2 to automate complex security tasks like application security, network security, and malware analysis

Product type Paperback

Published in Dec 2017

Publisher Packt

ISBN-13 9781788394512

Length 364 pages

Edition 1st Edition

Tools

Ansible

Concepts

Application Security

Authors (2):

Akash Mahajan

MADHU AKULA

View More author details

Table of Contents (12) Chapters

Preface

1. Introduction to Ansible Playbooks and Roles FREE CHAPTER

2. Ansible Tower, Jenkins, and Other Automation Tools

3. Setting Up a Hardened WordPress with Encrypted Automated Backups

4. Log Monitoring and Serverless Automated Defense (Elastic Stack in AWS)

5. Automating Web Application Security Testing Using OWASP ZAP

6. Vulnerability Scanning with Nessus

7. Security Hardening for Applications and Networks

8. Continuous Security Scanning for Docker Containers

9. Automating Lab Setups for Forensics Collection and Malware Analysis

10. Writing an Ansible Module for Security Testing

11. Ansible Security Best Practices, References, and Further Reading

Why Ansible for this setup?

Ansible is made for security automation and hardening. It uses YAML syntax, which helps us to codify our entire process of repeated tasks. By using this, we can automate the process of continuous delivery and deployment of infrastructure using roles and playbooks.

The modular approach enables us to perform tasks very simply. For example, the operations teams can write a playbook to set up a WordPress site and the security team can create another role which can harden the WordPress site.

It is very easy to use the modules for repeatability, and the output is idempotent, which means creating standards for the servers, applications, and infrastructure. Some use cases include creating base images for organizations using internal policy standards.

Ansible uses SSH protocol, which is by default secured with encrypted transmission and host encryption...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (2)

Akash Mahajan

Akash Mahajan is an accomplished security professional with over a decade's experience in providing specialist application and infrastructure consulting services at the highest levels to companies, governments, and organizations around the world. He has lots of experience in working with clients to provide innovative security insights that truly reflect the commercial and operational needs of the organization, from strategic advice to testing and analysis to incident response and recovery. He is an active participant in the international security community and a conference speaker both individually, as chapter lead of the Bangalore chapter of OWASP the global organization responsible for defining the standards for web application security and as a co-founder of NULL India's largest open security community. Akash runs Appsecco, a company focused on Application Security. He authored the book Burp Suite Essentials published by Packt Publishing in November 2014, which is listed as a reference by the creators of Burp Suite.

See other products by Akash Mahajan

AKULA

Madhu Akula is a cloud native security researcher with extensive experience in cloud, containers, Kubernetes, and automation security. He frequently speaks and trains at security conferences around the world, including DEFCON, BlackHat, USENIX, Github, OWASP Appsec, AllDayDevOps, DevSecCon, Nullcon, and c0c0n. His research has identified vulnerabilities in 200+ companies and products like Google, Microsoft, AT&T, Wordpress, Ntop, and Adobe. He is a co-author of Security Automation with Ansible 2, a book that is listed as a technical resource by Red Hat. Madhu is an active member of international security, DevOps, and CloudNative communities and holds industry certifications like OSCP and CKA.

See other products by AKULA