cr0hn/dockerscan cr0hn/dockerscan

  • Stars
    star
    1,303
  • Rank 34,807 (Top 0.8 %)
  • Language
    Python
  • License
    Other
  • Created over 7 years ago
  • Updated almost 4 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
cr0hn/dockerscan
github

cr0hn

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Docker security analysis & hacking tools

dockerscan

dockerscan: A Docker analysis & hacking tools

DockerScan logo

Project site http://github.com/cr0hn/dockerscan
Issues https://github.com/cr0hn/dockerscan/issues/
Author Daniel Garcia (cr0hn) / Roberto Munoz (robskye)
Documentation http://dockerscan.readthedocs.org
Last Version 1.0.0-Alpha-02
Python versions 3.5 or above

Support this project

Support this project (to solve issues, new features...) by applying the Github "Sponsor" button.

What's dockerscan

A Docker analysis tools

Very quick install

> python3.5 -m pip install -U pip
> python3.5 -m pip install dockerscan

Show options:

> dockerscan -h

Available actions

Currently Docker Scan support these actions:

  • Scan: Scan a network trying to locate Docker Registries

  • Registry

    • Delete: Delete remote image / tag
    • Info: Show info from remote registry
    • Push: Push an image (like Docker client)
    • Upload: Upload a random file

  • Image

    • Analyze: Looking for sensitive information in a Docker image.

      • Looking for passwords in environment vars.
      • Try to find any URL / IP in the environment vars.
      • Try to deduce the user used internally to run the software. This is not trivial. If the entry point is a .sh file. Read the file and try to find call to sudo-like: “sudo”, “gosu”, “sh -u”… And report the user found.

    • Extract: extract a docker image

    • Info: Get a image meta information

    • Modify:

      • entrypoint: change the entrypoint in a docker
      • trojanize: inject a reverser shell into a docker image
      • user: change running user in a docker image

What's the difference from Clair or Docker Cloud?

The purpose of Dockerscan is different. It's foccussed in the attack phase.

Although Dockescan has some functionalities to detect vulnerabilities in Docker images and Docker registries, the objective is the attack.

Documentation

Documentation is still in progress... sorry!

For the moment we only have the slides presented at RootedCON Spain, the conference where Docker Scan was presented:

https://www.slideshare.net/cr0hn/rootedcon-2017-docker-might-not-be-your-friend-trojanizing-docker-images/1

Or you can watch it in video format (recommended):

https://youtu.be/OwX1e4y4JMk

Also, you can watch a dockerscan usage demo:

https://youtu.be/UvtBGIb3E3o

Contributing

Any collaboration is welcome!

There are many tasks to do. You can check the Issues and send us a Pull Request.

License

This project is distributed under BSD license

More Repositories

1

aiotasks

A Celery like task manager that distributes Asyncio coroutines
Python
428
star
2

vulnerable-node

A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools
JavaScript
406
star
3

nosqlinjection_wordlists

This repository contains payload to test NoSQL Injections
333
star
4

festin

FestIn - Open S3 Bucket Scanner
Python
200
star
5

aiohttp-swagger

Swagger API Documentation builder for aiohttp server
JavaScript
185
star
6

enteletaor

Message Queue & Broker Injection tool
Python
144
star
7

dockerfile-security

Static security checker for Dockerfiles
Python
88
star
8

aiohttp-cache

A cache system for aiohttp server
Python
44
star
9

openvas_to_report

OpenVAS2Report: A set of tools to manager OpenVAS XML report files.
Python
39
star
10

PyDiscover

PyDiscover: Simple Secure and Lightweight Python Service Discovery
Python
38
star
11

ktcal2

SSH brute forcer tool and library, using AsyncIO of Python 3.4
Python
35
star
12

rsm

Redis Security Map - Anti-hacking for Redis
Python
33
star
13

OMSTD

Open Methodology for Security Tool Developers
25
star
14

EasyLogs

The simple, agnostic and lightweight logging dashboard
CSS
24
star
15

info2cpe

Library to convert a information text (server banner, for example) into CPE v2.3 value
Python
21
star
16

golismero-legacy

THIS IS A LEGACY VERSION PRESERVED FOR BACKUP, DO NOT USE
Python
15
star
17

CodernityDB3

An intent to port CodernityDB to Python 3
Python
15
star
18

wordpress-docker-sec

Anti-hacking tools deploying configuration for Wordpress
Shell
12
star
19

nginx-wordpress-docker-sec

Anti-hacking tools deployment config of Nginx for Wordpress
HTML
11
star
20

pyservice-registry

Simple Secure and Lightweight Service Registry in pure Python
Python
10
star
21

realtime-redis-backup

Realtime backup Redis data to S3
Python
10
star
22

UnderFucking

A Django based web page to test your security tools
Python
9
star
23

nmap-fingerprinting

Apply the Nmap fingerprinting rules, without launch Nmap
Python
7
star
24

python-object-watchdog

Watching for runtime changes in Python objects and launch callbacks
Python
6
star
25

pypow

Python version of Kapow! - PyPow! is the easy way to expose any cli command as a REST API
Python
5
star
26

python-dictionary-search

Search recursively data in a Python dictionary
Python
5
star
27

python-pipes

Helpers to manage stdin / stdout and UNIX pipes
Python
5
star
28

rancher-upgrader

Small utility to upgrade Rancher Services
Python
4
star
29

feed-to-exporter

Get RSS Feed and export as Wordpress Post
Python
4
star
30

BO

Hide information into boolean.io service
Python
3
star
31

BaZIN

FreeBSD deployer and configurer script
Shell
3
star
32

docker-signatures

Docker signatures ensure that a Docker Image has all signatures
Python
3
star
33

docker-nginx

Fork of Docker nginx with some customizations and optimizations
HTML
2
star
34

dnscapy

Automatically exported from code.google.com/p/dnscapy
Python
2
star
35

kali-docker-ssh

Shell
2
star
36

woocommerce-subscription-check

Check user subscriptions in Woocommerce without have and admin role
Python
2
star
37

python-database-watcher

Multi database watcher for changes on them
Python
2
star
38

pylli

Automatically exported from code.google.com/p/pylli
HTML
1
star
39

franki

Micro-services deployment as a configuration
Python
1
star
40

cr0hn.github.com

Personal blog to write in it when I have head in the clouds
HTML
1
star
41

pretty-dev-docs-github

Pretty Developer Docs for GitHub (PDDG): Easy builder develop documentation, user manuals & beautiful website using GitHub pages
HTML
1
star
42

docker-aws-lambda-38

Docker Image with AWS Lambda Linux with Python 3.8 environment
Dockerfile
1
star
43

cybercamp2017

Scripts de ejemplo del taller de Cybercamp
Python
1
star
44

python3.6-alpine-make

Python alpine image with make utils
Dockerfile
1
star
45

apicheck

The DevSecOps toolset for REST APIs
Python
1
star
46

cookiecutter-security-tool

Cookie cutter template: provides a command line tool structure for a Python project
Python
1
star
47

python-dynamic-plugins

Python plugin system with dynamic loading of plugins
Python
1
star