Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Security Automation with Ansible 2 Leverage Ansible 2 to automate complex security tasks like application security, network security, and malware analysis

Product type Paperback

Published in Dec 2017

Publisher Packt

ISBN-13 9781788394512

Length 364 pages

Edition 1st Edition

Tools

Ansible

Concepts

Application Security

Authors (2):

Akash Mahajan

MADHU AKULA

View More author details

Table of Contents (12) Chapters

Preface

1. Introduction to Ansible Playbooks and Roles FREE CHAPTER

2. Ansible Tower, Jenkins, and Other Automation Tools

3. Setting Up a Hardened WordPress with Encrypted Automated Backups

4. Log Monitoring and Serverless Automated Defense (Elastic Stack in AWS)

5. Automating Web Application Security Testing Using OWASP ZAP

6. Vulnerability Scanning with Nessus

7. Security Hardening for Applications and Networks

8. Continuous Security Scanning for Docker Containers

9. Automating Lab Setups for Forensics Collection and Malware Analysis

10. Writing an Ansible Module for Security Testing

11. Ansible Security Best Practices, References, and Further Reading

Summary

That is a lot of information to take in. Also, we have made many assumptions about the scenario. But if this spurs you into thinking about combining the various logs of your devices and servers into one central location and enabling automated alerting and defenses, we have done our job well.

As this chapter demonstrates, security automation is a bit like plumbing. As long as we can understand how a bunch of disparate systems can be made to communicate together, we can add them to our playbooks. In many cases, Ansible will already have a module in place for us to use and get going.

Now that we have whet your appetite for logging and attack detection, in the next chapter, let's dive into what it takes to set up an automated web security testing setup. We will pick the incredibly powerful and versatile OWASP ZAP scanner and intercepting proxy and use it to...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (2)

Akash Mahajan

Akash Mahajan is an accomplished security professional with over a decade's experience in providing specialist application and infrastructure consulting services at the highest levels to companies, governments, and organizations around the world. He has lots of experience in working with clients to provide innovative security insights that truly reflect the commercial and operational needs of the organization, from strategic advice to testing and analysis to incident response and recovery. He is an active participant in the international security community and a conference speaker both individually, as chapter lead of the Bangalore chapter of OWASP the global organization responsible for defining the standards for web application security and as a co-founder of NULL India's largest open security community. Akash runs Appsecco, a company focused on Application Security. He authored the book Burp Suite Essentials published by Packt Publishing in November 2014, which is listed as a reference by the creators of Burp Suite.

See other products by Akash Mahajan

AKULA

Madhu Akula is a cloud native security researcher with extensive experience in cloud, containers, Kubernetes, and automation security. He frequently speaks and trains at security conferences around the world, including DEFCON, BlackHat, USENIX, Github, OWASP Appsec, AllDayDevOps, DevSecCon, Nullcon, and c0c0n. His research has identified vulnerabilities in 200+ companies and products like Google, Microsoft, AT&T, Wordpress, Ntop, and Adobe. He is a co-author of Security Automation with Ansible 2, a book that is listed as a technical resource by Red Hat. Madhu is an active member of international security, DevOps, and CloudNative communities and holds industry certifications like OSCP and CKA.

See other products by AKULA