Search icon Close icon
Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Save more on your purchases! discount-offer-chevron-icon
Savings automatically calculated. No voucher code required.
Checkout

Change country

Modal Close icon
Country selected Country selected
country flag United States
Country selected
country flag Great Britain
Country selected
country flag India
Country selected
country flag Germany
Country selected
country flag France
Country selected
country flag Canada
Country selected
country flag Russia
Country selected
country flag Spain
Country selected
country flag Brazil
Country selected
country flag Australia
Country selected
country flag South Africa
Country selected
country flag Thailand
Country selected
country flag Ukraine
Country selected
country flag Switzerland
Country selected
country flag Slovakia
Country selected
country flag Luxembourg
Country selected
country flag Hungary
Country selected
country flag Romania
Country selected
country flag Denmark
Country selected
country flag Ireland
Country selected
country flag Estonia
Country selected
country flag Belgium
Country selected
country flag Italy
Country selected
country flag Finland
Country selected
country flag Cyprus
Country selected
country flag Lithuania
Country selected
country flag Latvia
Country selected
country flag Malta
Country selected
country flag Netherlands
Country selected
country flag Portugal
Country selected
country flag Slovenia
Country selected
country flag Sweden
Country selected
country flag Argentina
Country selected
country flag Colombia
Country selected
country flag Ecuador
Country selected
country flag Indonesia
Country selected
country flag Mexico
Country selected
country flag New Zealand
Country selected
country flag Norway
Country selected
country flag South Korea
Country selected
country flag Taiwan
Country selected
country flag Turkey
Country selected
country flag Czechia
Country selected
country flag Austria
Country selected
country flag Greece
Country selected
country flag Isle of Man
Country selected
country flag Bulgaria
Country selected
country flag Japan
Country selected
country flag Philippines
Country selected
country flag Poland
Country selected
country flag Singapore
Country selected
country flag Egypt
Country selected
country flag Chile
Country selected
country flag Malaysia
Country selected
Arrow left icon
All Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Newsletter Hub
Free Learning
Arrow right icon
timer SALE ENDS IN
0 Days
:
00 Hours
:
00 Minutes
:
00 Seconds
Arrow up icon
GO TO TOP
Security Automation with Ansible 2

You're reading from   Security Automation with Ansible 2 Leverage Ansible 2 to automate complex security tasks like application security, network security, and malware analysis

Arrow left icon
Product type Paperback
Published in Dec 2017
Publisher Packt
ISBN-13 9781788394512
Length 364 pages
Edition 1st Edition
Tools
Concepts
Arrow right icon
Authors (2):
Arrow left icon
Akash Mahajan Akash Mahajan
Author Profile Icon Akash Mahajan
Akash Mahajan
Akash Mahajan is an accomplished security professional with over a decade's experience in providing specialist application and infrastructure consulting services at the highest levels to companies, governments, and organizations around the world. He has lots of experience in working with clients to provide innovative security insights that truly reflect the commercial and operational needs of the organization, from strategic advice to testing and analysis to incident response and recovery. He is an active participant in the international security community and a conference speaker both individually, as chapter lead of the Bangalore chapter of OWASP the global organization responsible for defining the standards for web application security and as a co-founder of NULL India's largest open security community. Akash runs Appsecco, a company focused on Application Security. He authored the book Burp Suite Essentials published by Packt Publishing in November 2014, which is listed as a reference by the creators of Burp Suite.
Read more
See other products by Akash Mahajan
AKULA AKULA
Author Profile Icon AKULA
AKULA
Madhu Akula is a cloud native security researcher with extensive experience in cloud, containers, Kubernetes, and automation security. He frequently speaks and trains at security conferences around the world, including DEFCON, BlackHat, USENIX, Github, OWASP Appsec, AllDayDevOps, DevSecCon, Nullcon, and c0c0n. His research has identified vulnerabilities in 200+ companies and products like Google, Microsoft, AT&T, Wordpress, Ntop, and Adobe. He is a co-author of Security Automation with Ansible 2, a book that is listed as a technical resource by Red Hat. Madhu is an active member of international security, DevOps, and CloudNative communities and holds industry certifications like OSCP and CKA.
Read more
See other products by AKULA
Arrow right icon
View More author details
Toc

Table of Contents (18) Chapters Close

Title Page
Credits
About the Authors
About the Reviewer
www.PacktPub.com
Customer Feedback
Preface
1. Introduction to Ansible Playbooks and Roles 2. Ansible Tower, Jenkins, and Other Automation Tools FREE CHAPTER 3. Setting Up a Hardened WordPress with Encrypted Automated Backups 4. Log Monitoring and Serverless Automated Defense (Elastic Stack in AWS) 5. Automating Web Application Security Testing Using OWASP ZAP 6. Vulnerability Scanning with Nessus 7. Security Hardening for Applications and Networks 8. Continuous Security Scanning for Docker Containers 9. Automating Lab Setups for Forensics Collection and Malware Analysis 10. Writing an Ansible Module for Security Testing 11. Ansible Security Best Practices, References, and Further Reading

Chapter 8. Continuous Security Scanning for Docker Containers

Docker containers are the new way developers package applications. The best feature of containers is the fact that they contain the code, runtime, system libraries, and all the settings that are required for the application to work. Due to the ease of use and deployment, more and more applications are getting deployed in containers for production use. 

With so many moving parts, it becomes imperative that we have the capability to continuously scan Docker containers for security issues. In this chapter, we will look at various ways of doing just that. Starting with the familiar CIS benchmark scripts invoked using Ansible, we will move on to clair-scanner, which is a great tool to scan for existing vulnerabilities and integrates well with your existing CI/CD workflow, if you need. 

In detail, we will explore the following topics in this chapter:

  • Understanding continuous security concepts
  • Automating vulnerability assessments of Docker...
lock icon The rest of the chapter is locked
arrow left Previous Section
Section 1 of 7
Next Section arrow right
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at $15.99/month. Cancel anytime

Authors (2)

Left arrow icon
Profile icon Akash Mahajan
Akash Mahajan
Github icon
Akash Mahajan is an accomplished security professional with over a decade's experience in providing specialist application and infrastructure consulting services at the highest levels to companies, governments, and organizations around the world. He has lots of experience in working with clients to provide innovative security insights that truly reflect the commercial and operational needs of the organization, from strategic advice to testing and analysis to incident response and recovery. He is an active participant in the international security community and a conference speaker both individually, as chapter lead of the Bangalore chapter of OWASP the global organization responsible for defining the standards for web application security and as a co-founder of NULL India's largest open security community. Akash runs Appsecco, a company focused on Application Security. He authored the book Burp Suite Essentials published by Packt Publishing in November 2014, which is listed as a reference by the creators of Burp Suite.
Read more
See other products by Akash Mahajan
Profile icon AKULA
AKULA
Github icon
Madhu Akula is a cloud native security researcher with extensive experience in cloud, containers, Kubernetes, and automation security. He frequently speaks and trains at security conferences around the world, including DEFCON, BlackHat, USENIX, Github, OWASP Appsec, AllDayDevOps, DevSecCon, Nullcon, and c0c0n. His research has identified vulnerabilities in 200+ companies and products like Google, Microsoft, AT&T, Wordpress, Ntop, and Adobe. He is a co-author of Security Automation with Ansible 2, a book that is listed as a technical resource by Red Hat. Madhu is an active member of international security, DevOps, and CloudNative communities and holds industry certifications like OSCP and CKA.
Read more
See other products by AKULA
Right arrow icon

Other recommended products

Related to this chapter
Left arrow icon
Practical Security Automation and Testing
Practical Security Automation and Testing
Read more
Security automation is the automatic handling of software security assessments tasks. This book helps you to build your security automation framework to scan for vulnerabilities without human intervention.
Read more
Feb 2019 8h 32m
Implementing DevOps with Ansible 2
Implementing DevOps with Ansible 2
Read more
Thinking about adapting the DevOps culture for your organization using a very simple, yet powerful automation tool, Ansible 2.0? Then this book is for you! In this book, you will start with the role of Ansible in the DevOps module, which covers fundamental DevOps practices and how Ansible is leveraged by DevOps organizations to implement consistent and simplified configuration management and deployment.
Read more
Jul 2017 8h 52m
Learn Ansible
Learn Ansible
Read more
Ansible is an IT automation and configuration management tool widely used for infrastructure, cloud, and network automation. Trends and surveys say that Ansible is the choice of tool among system administrators as it is so easy to use. In this book, you'll learn how to integrate Ansible into your day-to-day role as a system administrator, developer, or DevOps practitioner.
Read more
Jun 2018 19h 16m
Ansible Quick Start Guide
Ansible Quick Start Guide
Read more
Configuration Management (CM) tools help administrators reduce their workload. Ansible is one of the best Configuration Management tools, and can act as an orchestrator for managing other CMs. This book is the easiest way to learn how to use Ansible as an orchestrator and a Configuration Management tool. With this book, you'll learn how to control and monitor computer and network infrastructures of any size, physical or virtual.
Read more
Sep 2018 7h 8m
Learning Ansible 2.7
Learning Ansible 2.7
Read more
Ansible is an open source automation platform that assists organizations with tasks. This book will tech you to create and deploy playbooks to automate some simple tasks that you already perform on a daily basis. You will also learn to debug and test Ansible to ensure that your playbooks will always work. Towards the end, you will learn how to leverage Ansible Galaxy and Ansible Tower to maximise your productivity.
Read more
Apr 2019 8h 52m
Practical Ansible 2
Practical Ansible 2
Read more
Anyone with responsibility for an IT infrastructure will benefit from the increased efficiency and reliability that can be delivered through automation with Ansible, an open-source, agentless tool that automates cloud provisioning, configuration management, application deployment, and many other infrastructures and application-related tasks.
Read more
Jun 2020 13h 40m
Containerization with Ansible 2
Containerization with Ansible 2
Read more
Managing the life cycle of containers has become a tedious and manual process. Ansible Container is the ultimate workflow for container development, testing, and deployment. This book will get you up and running with Ansible Container so that you can create container images from Ansible roles, run containers locally, and deploy them to the cloud.
Read more
Dec 2017 7h 48m
Network Scanning Cookbook
Network Scanning Cookbook
Read more
Network Scanning Cookbook enables a reader to understand how to perform a Network Scan, which includes Discovery, Scanning, Enumeration, Vulnerability detection etc using scanning tools like Nessus and Nmap. If the reader is an auditor, they will be able to determine the security state of the client's network and recommend remediations accordingly.
Read more
Sep 2018 10h 8m
Hands-On Security in DevOps
Hands-On Security in DevOps
Read more
Hands-On Security in DevOps explores how the techniques of DevOps and Security should be applied together to make cloud services safer. By the end of this book, readers will be ready to build security controls at all layers, monitor and respond to attacks on cloud services, and add security organization-wide through risk management and training.
Read more
Jul 2018 11h 52m
Ansible 2 Cloud Automation Cookbook
Ansible 2 Cloud Automation Cookbook
Read more
Ansible is a powerful and versatile tool used for configuration management and orchestration. Ansible's usefulness is derived from its modules. This book focuses on modules that will help you provision cloud resources by interacting with various APIs exposed by cloud providers. Taking a step further, you will learn how to manage cloud resources. Each chapter showcases the deployment of a multi-tier application on the provisioned resources.
Read more
Feb 2018 6h 40m
Hands-On Enterprise Automation on Linux
Hands-On Enterprise Automation on Linux
Read more
Anyone responsible for a Linux server infrastructure will be able to improve the reliability of their environment and efficiency of their operations with this book, “Hands-on Enterprise Automation on Linux”. This, in turn, will help to reduce operating costs and the stresses and workload placed on those responsible for the environment.
Read more
Jan 2020 17h 4m
Mastering Ansible
Mastering Ansible
Read more
Automation is critical to success in the world of DevOps. How quickly and efficiently an application deployment can be automated, or a new infrastructure can be built up, can be the difference between a successful product or a failure. Ansible provides a simple yet powerful automation engine. Beyond the basics of Ansible lie a host of advanced features which are available to help you increase efficiency and accomplish complex orchestrations with ease.
Read more
Mar 2017 10h 20m
Right arrow icon
Visually different images

Personalised recommendations for you

Based on your interests and search pattern
Left arrow icon
Designing Information Architecture
Designing Information Architecture
Read more
Designing Information Architecture is a concise reference on information architecture for UX professionals working within a variety of business contexts for domains like enterprise IA, cross-channel IA, eCommerce IA, and user-generated IA.
Read more
Mar 2025 19h 0m
The Ultimate Studio One Pro 7 Book
The Ultimate Studio One Pro 7 Book
Read more
This book shows you how to turn your musical ideas into fully produced songs using Studio One's powerful tools and user-friendly workflow, from installing Studio One to mastering and publishing your songs.
Read more
Apr 2025 13h 24m
Learn Blender Simulations the Right Way
Learn Blender Simulations the Right Way
Read more
This book teaches how to create realistic simulations such as fire, water, and explosions, waving flags, and more using Blender's built in physics system. You'll create animations and gain a deep understanding of all the simulations Blender offers.
Read more
Apr 2025 13h 44m
Mastering Clip Studio Paint
Mastering Clip Studio Paint
Read more
For artists struggling with the advanced features in Clip Studio Paint, this guide offers step-by-step tutorials and expert tips to master the range of tools, enhancing creativity and efficiency in digital art creation.
Read more
May 2025 14h 56m
RxJS Cookbook for Reactive Programming
RxJS Cookbook for Reactive Programming
Read more
This book teaches you to craft reactive UI components and animations; leverage browser web APIs; and optimize performance for blazing-fast apps. You'll see how RxJS unlocks elegant solutions for state management and event-driven systems among others.
Read more
Mar 2025 10h 20m
Right arrow icon