Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-15 01:17:36 +00:00
Code Issues Projects Releases Packages Wiki Activity

GitBook: [master] one page and 2 assets modified

Browse source
This commit is contained in:
CPol 2021-01-04 10:35:01 +00:00 committed by gitbook-bot
parent 22f0251a12
commit 7df6e7df6d
No known key found for this signature in database
GPG key ID: 07D2180C7B12D0FF
3 changed files with 14 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

BIN
.gitbook/assets/image (410).png Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 5.4 KiB

BIN
.gitbook/assets/image (411).png Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 12 KiB

14
pentesting/2375-pentesting-docker.md
View file

@ -219,3 +219,17 @@ cat /mnt/etc/shadow
If you are inside a host that is using docker, you may [**read this information to try to elevate privileges**](../linux-unix/privilege-escalation/#writable-docker-socket).
## Securing your Dockerfiles
* You can use the tool [https://github.com/buddy-works/dockerfile-linter](https://github.com/buddy-works/dockerfile-linter) to **inspect your Dockerfile** and find all types of misconfigurations. Each misconfiguration will be given an ID, you can find here [https://github.com/buddy-works/dockerfile-linter/blob/master/Rules.md](https://github.com/buddy-works/dockerfile-linter/blob/master/Rules.md) how to fix each of them.
* `dockerfilelinter -f Dockerfile`
![](../.gitbook/assets/image%20%28410%29.png)
* You can use the tool [https://github.com/replicatedhq/dockerfilelint](https://github.com/replicatedhq/dockerfilelint) to **inspect your Dockerfile** and find all types of misconfigurations.
* `dockerfilelint Dockerfile`
![](../.gitbook/assets/image%20%28411%29.png)