book

Security Automation with Ansible 2

by Akash Mahajan, MADHU AKULA

December 2017

Intermediate to advanced

364 pages

7h 30m

English

Packt Publishing

Read now

Unlock full access

Content preview from Security Automation with Ansible 2

Configuring ZAP Baseline scan

The ZAP Baseline scan is a script that is available in the ZAP Docker images.

More details about OWASP ZAP Baseline scan can be found at https://github.com/zaproxy/zaproxy/wiki/ZAP-Baseline-Scan.

This is what the script does:

Runs ZAP spider against the specified target for one minute and then does a passive scan
By default, reports all alerts as warnings
This script is intended to be ideal to run in a CI/CD environment, even against production sites

Before setting up and running the ZAP Baseline scan, we want to run a simple vulnerable application so that all scans and testing using ZAP are running against that application, rather than running the scans against real-world applications, which is illegal ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Implementing DevOps with Ansible 2

Jonathan McAllister

Practical Ansible 2

Daniel Oh, James Freeman, Fabio Alessandro Locati

Learning Ansible 2 - Second Edition

Fabio Alessandro Locati

Practical Security Automation and Testing

Tony Hsiang-Chih Hsu

Publisher Resources

ISBN: 9781788394512Supplemental Content