|
4 | 4 |
|
5 | 5 | # DockerENT |
6 | 6 |
|
7 | | -DockerENT is activ**E** ru**N**time application scanning **T**ool (**RAST** tool) and framework which is pluggable and written in python. It comes with **CLI application** and **Web Interface** written with [StreamLit](https://www.streamlit.io/). |
| 7 | +DockerENT is activ**E** ru**N**time application scanning **T**ool (**RAST** tool) and framework which is pluggable and written in python. It comes with **CLI application** and clean **Web Interface** written with [StreamLit](https://www.streamlit.io/). |
8 | 8 |
|
9 | | -DockerENT is designed keeping in mind that during deployments there weak configurations which are sticky in production deployments and leads to severe consequenes. This application connects with running containers in the system and fetches the list of malicious runtime configurtions and generates a report. If invoked through CLI it can create `JSON` and `HTML` report. If invoked through **web** interface, it can display the scan and audit report in the UI itself. |
| 9 | +DockerENT is designed keeping in mind that during deployments there weak configurations which are sticky in production deployments as well and can lead to severe consequences. This application connects with running containers in the system and fetches the list of weak and vulnerable runtime configurtions and generates a report. If invoked through CLI it can create `JSON` and `HTML` report. If invoked through **web** interface, it can display the scan and audit report in the UI itself. |
10 | 10 |
|
11 | 11 | ## How to Run |
12 | 12 |
|
@@ -65,7 +65,7 @@ See this quick video to get started with. |
65 | 65 | - [Output plugins](https://github.com/r0hi7/DockerENT/tree/master/DockerENT/output_plugins) can write to `file` and `html` sinks. |
66 | 66 | - The only open source interactive docker scanning tool. |
67 | 67 | - Can run plugins in parallel. |
68 | | -- Under active development. |
| 68 | +- Under active development :smile:. |
69 | 69 |
|
70 | 70 | ### How to Create your own Plugin. |
71 | 71 | - Have some **idea** to perform runtime scan. |
@@ -138,6 +138,8 @@ def _audit(container, results, audit_queue): |
138 | 138 | | NETWORK | [File](DockerENT/docker_plugins/docker_network_info.py) | Identify Network state | Identifies All mapped ports. | |
139 | 139 | | PLAINTEST_PASSWORD | [File](DockerENT/docker_plugins/docker_plaintext_password_info.py) | Identify password in different files | | |
140 | 140 | | SECURITY_PROFILES | [File](DockerENT/docker_plugins/docker_security_profiles_info.py) | Identify Weak Security Profiles | List Weak security profiles. | |
| 141 | +|USER_INFO | [File](DockerENT/docker_plugins/docker_user_info.py)|Identify user info| List permissions in passwd and other sensitive files| |
| 142 | +|SYSTEM_INFO | [File](DockerENT/docker_plugins/docker_system_info.py)|Identify docker system info| No Audit| |
141 | 143 |
|
142 | 144 | ### CLI interface |
143 | 145 | #### Pros |
|
0 commit comments