Mirrors/h4cker
2
0
Fork 0
mirror of https://github.com/The-Art-of-Hacking/h4cker synced 2024-11-10 13:44:12 +00:00
Code Issues Projects Releases Packages Wiki Activity

Update docker-bench-websploit.sh

Browse source
This commit is contained in:
Omar Santos 2021-04-11 17:44:07 -04:00
parent 65f58de17d
commit 30ce657605
1 changed files with 11 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
docker-and-k8s-security/docker/docker-bench-websploit.sh
View file

@ -2,7 +2,12 @@
# A lame and quick script to run docker-bench-security in WebSploit Labs # A lame and quick script to run docker-bench-security in WebSploit Labs
# Omar Santos @santosomar # Omar Santos @santosomar
echo "Running docker-bench-security from WebSploit"
red=$(tput setaf 1)
green=$(tput setaf 2)
reset=$(tput sgr0)
echo "Running docker-bench-security from ${red}WebSploit"
docker run --rm --net host --pid host --userns host --cap-add audit_control \ docker run --rm --net host --pid host --userns host --cap-add audit_control \
-e DOCKER_CONTENT_TRUST=$DOCKER_CONTENT_TRUST \ -e DOCKER_CONTENT_TRUST=$DOCKER_CONTENT_TRUST \
@ -18,4 +23,8 @@ docker run --rm --net host --pid host --userns host --cap-add audit_control \
cat bench_results.txt | grep WARN cat bench_results.txt | grep WARN
echo "The output above only includes the major findings. The complete results have been stored at: $(pwd)/bench_results.txt "
echo "${red}The output above only includes the major findings."
echo "${reset}The complete results have been stored at:
${green}$(pwd)/bench_results.txt "