Security Automation with Ansible 2

Automate security related tasks in a structured, modular fashion using the best open source automation tool available

Security Automation with Ansible 2

Akash Mahajan, Madhu Akula
January 2018

Automate security related tasks in a structured, modular fashion using the best open source automation tool available

This title is available to pre-order now and is expected to be published in January 2018.

Mapt Subscription

FREE

€29.98/m after trial

eBook

€29.40

RRP €41.98

Save 29%

Print + eBook

€42.99

RRP €42.99

What do I get with a Mapt Pro subscription?

Unlimited access to all Packt’s 5,000+ eBooks and Videos
Early Access content, Progress Tracking, and Assessments
1 Free eBook or Video to download and keep every month after trial

What do I get with an eBook?

Download this book in EPUB, PDF, MOBI formats
DRM FREE - read and interact with your content when you want, where you want, and how you want
Access this title in the Mapt reader

What do I get with Print & eBook?

Get a paperback copy of the book delivered to you
Download this book in EPUB, PDF, MOBI formats
DRM FREE - read and interact with your content when you want, where you want, and how you want
Access this title in the Mapt reader

What do I get with a Video?

Download this Video course in MP4 format
DRM FREE - read and interact with your content when you want, where you want, and how you want
Access this title in the Mapt reader

€0.00

€29.40

€42.99

€29.98p/m after trial

RRP €41.98

RRP €42.99

Subscription

eBook

Print + eBook

Start 30 Day Trial

Code Files

Preview in Mapt

Book Details

ISBN 139781788394512

Paperback404 pages

Book Description

Security automation is one of the most interesting skills to have nowadays. Ansible allows you to write automation procedures once and use them across your entire infrastructure. This book will teach you the best way to use Ansible for completing seemingly complex tasks by using various building blocks available and create solutions that are easy to teach others, store for later, perform version control on and allow for repeatability.

We will start by covering various popular modules and write simple playbooks to showcase those modules. We will see how this can be applied over a variety of platforms and operating systems whether be it Windows/Linux bare metal servers or containers on a cloud platform. Once the bare bones automation is in place, we will learn how to leverage tools like Ansible Tower or even Jenkins to create scheduled repeatable processes around security patching, security hardening, compliance reports, monitoring of systems and so on. You will then delve into useful security automation techniques and approaches and learn to extend Ansible for enhanced security. While on the way, we will engage topics like how to manage secrets, how to manage all the playbooks that we will create and how to enable collaboration around them. The final stretch will see us tackling on how we can extend the modules of Ansible for our use and do all the above in a programmatic manner for even more powerful automation frameworks and rigs.

What You Will Learn

Use Ansible playbooks, roles, modules and templating to build generic, testable playbooks
Manage Linux and Windows hosts remotely in a repeatable and predictable manner
Learn how to do security patch management, security hardening with scheduling and automation
Setup AWS Lambda for server-less automated defense
Run continuous security scans against your hosts and automatically fix and harden the gaps
Extend Ansible to write your custom modules and use it as part of your already existing security automation programs
Perform automation security audit checks for Applications using Ansible
Manage secrets in Ansible using Ansible vault

Authors

Akash Mahajan

Akash Mahajan is an accomplished security professional with over a decade’s experience of providing specialist application and infrastructure consulting services at the highest levels to companies, governments, and organizations around the world. He has deep experience of working with clients to provide innovative security insight that truly reflects the commercial and operational needs of the organization from strategic advice to testing and analysis to incident response and recovery. He is an active participant in the international security community and conference speaker both individually, as chapter lead of the Bangalore chapter of OWASP the global organization responsible for defining the standards for web application security and as a co-founder of NULL India’s largest open security community. Akash runs Appsecco a company focused on Application Security. He has authored the book - Burp Suite Essentials published by PacktPub November 2014 which is listed as a reference by the creators of Burp Suite (ISBN 978-1783550111).

Madhu Akula

Madhu Akula is a security ninja, security and devops researcher with extensive experience in the industry ranging from client facing assignments building scalable and secure infrastructure, to publishing industry leading research to running training sessions for companies and governments alike.

Madhu’s research papers are frequently selected for major security industry conferences including Defcon 24, All Day DevOps, DevSecCon, DevOpsDays India, ToorCon, DefCamp, SkydogCon and NolaCon. Madhu was a keynote speaker for the National Cyber Security conference at Dayananda Sagar College in Feb 2016
When he’s not working with Appsecco’s clients or speaking at events he’s actively involved in researching vulnerabilities in open source products/platforms such as WordPress, Ntop, Opendocman etc. and is also a contributing bug hunter with Code Vigilant (a project to Secure Open Source Software). His research has identified many vulnerabilities in over 200 organizations including US Department of Homeland Security, Google, Microsoft, Yahoo, Adobe, LinkedIn, Ebay, At&t, Blackberry, Cisco, Barracuda etc. He is also an active member with Bugcrowd, Hackerone, Synack etc.

Madhu has trained over 5000 people in information security for companies and organisations including the Indian Navy and the Ministry of e-services in a leading Gulf state.