container-analysis

Identifying container vulnerabilities in official and non official docker images from docker hub. https://nullsweep.com/docker-static-analysis-with-clair/

Clair is a vulnerability scanner for Docker containers and images.

Setup

git clone git@github.com:Charlie-belmer/Docker-security-example.git
cd Docker-security-example/clair/
docker-compose up

Download a vulnerable container

docker pull imiell/bad-dockerfile docker-compose exec clairctl clairctl analyze -l imiell/bad-dockerfile docker-compose exec clairctl clairctl report -l imiell/bad-dockerfile

HTML report at /reports/html/analysis-imiell-bad-dockerfile-latest.html

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
official_image_reports		official_image_reports
reports		reports
README.md		README.md
analyse.py		analyse.py
community_img.py		community_img.py
communityscrapehtml.py		communityscrapehtml.py
custom-out.log		custom-out.log
malware_final_rep.pdf		malware_final_rep.pdf
nonofficialscrapehtml.py		nonofficialscrapehtml.py
official_img.py		official_img.py
officialscrapehtml.py		officialscrapehtml.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

container-analysis

Setup

Download a vulnerable container

About

Releases

Packages

Languages

jkumar10/container-analysis

Folders and files

Latest commit

History

Repository files navigation

container-analysis

Setup

Download a vulnerable container

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages