dockscan

dockscan is security vulnerability and audit scanner for Docker installations

GPL-2.0 License

Downloads
8K
Stars
216
Committers
1
View Code on GitHub
Ecosystems: Ruby

dockscan

Scan Docker installations for security issues and vulnerabilities.

Features

  • plugin based system for discovery, audit and reporting
  • able to scan local and remote docker installations
  • plugins are easy to write

Requirements

  • Ruby 2.0 or above (1.9.x does not work!)
  • Ruby gem: docker-api (docker)

Installation

You can install dockscan by installing dockscan gem:

gem install dockscan

Usage

Typical usage for scanning docker installation.

If you wish to scan local Docker installation:

dockscan unix:///var/run/docker.sock

If you wish to scan remote Docker installation and produce HTML report:

dockscan -r html -o myreport -v tcp://example.com:5422

If you wish to scan remote Docker installation and produce text report:

dockscan -r txt -o myreport -v tcp://example.com:5422

Environment variables

DOCKER_CERT_PATH will configure dockscan to use SSL

DOCKER_SSL_VERIFY if set to false will not verify certificates.

ToDo

  • Implement web frontend for scanner
  • Progress bars

Done

  • Different reporting (HTML, txt, ...)
Package Rankings
Top 24.55% on Rubygems.org
Badges
Extracted from project README
Build Status Coverage Status
Related Projects
android-spyware

Rails c&c web application for spying Android devices

05 Apr 2020 543
rake_docker

Rake tasks for managing images and containers.

19 Mar 2017 4
dockhand

Toolkit for building Rails app Docker images

03 Mar 2023 2
dev-board

A simple developer dashboard that displays open PRs for a GitHub repo

26 Feb 2017 5
nessus_rest-ruby

Communicate with Nessus Scanner (version 6+) over REST/JSON interface

12 Aug 2016 6
nessus-xmlrpc-ruby

Ruby gem/library for Nessus XMLRPC interface and Nessus command line example

23 Nov 2012 5