Automation security audit checks for applications using Ansible
Modern applications can get pretty complex fairly quickly. Having the ability to run automation to do security tasks is almost a mandatory requirement.
The different types of application security scanning we can do can range from the following:
- Run CI/CD scanning against the source code (for example, RIPS and brakeman).
- Dependency checking scanners (for example, OWASP dependency checker and snyk.io (https://snyk.io/)).
- Once deployed then run the web application scanner (for example, Nikto, Arachni, and w3af).
- Framework-specific security scanners (for example, WPScan and Droopscan) and many other.
Source code analysis scanners
This is one of the first and common way to minimize the security risk while applications going to production. Source code analysis scanner also known as Static Application Security Testing (SAST) will help to find security issues by analyzing the source code of the application. This kind of tools and testing...