Update 5000-pentesting-docker-registry.md

update tool
2024-11-21 20:23:18 +00:00 · 2024-03-21 19:21:58 +01:00 · 2024-03-21 19:21:58 +01:00 · e786d810fa
commit e786d810fa
parent b9f92897b2
1 changed files with 48 additions and 11 deletions
--- a/network-services-pentesting/5000-pentesting-docker-registry.md
+++ b/network-services-pentesting/5000-pentesting-docker-registry.md
@ -91,11 +91,59 @@ curl -k -u username:password https://10.10.10.10:5000/v2/_catalog
 [DockerRegistryGrabber](https://github.com/Syzik/DockerRegistryGrabber) is a python tool to enumerate / dump docker degistry (without or with basic authentication)

 ```bash
+usage: drg.py [-h] [-p port] [-U USERNAME] [-P PASSWORD] [-A header] [--list | --dump_all | --dump DOCKERNAME] url
+
+     ____   ____    ____ 
+    |  _ \ |  _ \  / ___|
+    | | | || |_) || |  _ 
+    | |_| ||  _ < | |_| |
+    |____/ |_| \_\ \____|
+     Docker Registry grabber tool v2 
+     by @SyzikSecu
+
+positional arguments:
+  url                URL
+
+options:
+  -h, --help         show this help message and exit
+  -p port            port to use (default : 5000)
+
+Authentication:
+  -U USERNAME        Username
+  -P PASSWORD        Password
+  -A header          Authorization bearer token
+
+Actions:
+  --list
+  --dump_all
+  --dump DOCKERNAME  DockerName
+
+Example commands:
+  python drg.py http://127.0.0.1 --list
+  python drg.py http://127.0.0.1 --dump my-ubuntu
+  python drg.py http://127.0.0.1 --dump_all
+  python drg.py https://127.0.0.1 -U 'testuser' -P 'testpassword' --list
+  python drg.py https://127.0.0.1 -U 'testuser' -P 'testpassword' --dump my-ubuntu
+  python drg.py https://127.0.0.1 -U 'testuser' -P 'testpassword' --dump_all
+  python drg.py https://127.0.0.1 -A '<Auth BEARER TOKEN>' --list
+  python drg.py https://127.0.0.1 -A '<Auth BEARER TOKEN>' --dump my-ubuntu
+  python drg.py https://127.0.0.1 -A '<Auth BEARER TOKEN>' --dump_all
+
 python3 DockerGraber.py http://127.0.0.1  --list

 [+] my-ubuntu
 [+] my-ubuntu2

+python3 DockerGraber.py http://127.0.0.1  --dump my-ubuntu
+
+[+] blobSum found 5
+[+] Dumping my-ubuntu
+    [+] Downloading : a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
+    [+] Downloading : b39e2761d3d4971e78914857af4c6bd9989873b53426cf2fef3e76983b166fa2
+    [+] Downloading : c8ee6ca703b866ac2b74b6129d2db331936292f899e8e3a794474fdf81343605
+    [+] Downloading : c1de0f9cdfc1f9f595acd2ea8724ea92a509d64a6936f0e645c65b504e7e4bc6
+    [+] Downloading : 4007a89234b4f56c03e6831dc220550d2e5fba935d9f5f5bcea64857ac4f4888
+
 python3 DockerGraber.py http://127.0.0.1  --dump_all

 [+] my-ubuntu
@ -114,17 +162,6 @@ python3 DockerGraber.py http://127.0.0.1  --dump_all
    [+] Downloading : c8ee6ca703b866ac2b74b6129d2db331936292f899e8e3a794474fdf81343605
    [+] Downloading : c1de0f9cdfc1f9f595acd2ea8724ea92a509d64a6936f0e645c65b504e7e4bc6
    [+] Downloading : 4007a89234b4f56c03e6831dc220550d2e5fba935d9f5f5bcea64857ac4f4888
-
-
-python3 DockerGraber.py http://127.0.0.1  --dump my-ubuntu
-
-[+] blobSum found 5
-[+] Dumping my-ubuntu
-    [+] Downloading : a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4
-    [+] Downloading : b39e2761d3d4971e78914857af4c6bd9989873b53426cf2fef3e76983b166fa2
-    [+] Downloading : c8ee6ca703b866ac2b74b6129d2db331936292f899e8e3a794474fdf81343605
-    [+] Downloading : c1de0f9cdfc1f9f595acd2ea8724ea92a509d64a6936f0e645c65b504e7e4bc6
-    [+] Downloading : 4007a89234b4f56c03e6831dc220550d2e5fba935d9f5f5bcea64857ac4f4888
 ```

 ### Enumeration using curl