awesome-docker-security
github.com/myugan/awesome-docker-security โ๐ A curated list of awesome Docker security resources
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me others resources from awesome-docker-security"
Installation instructions โWhat's inside
Books
Use Cases
- A hacking group is hijacking Docker systems with exposed API endpoints
- Cryptojacking worm compromised over 2,000 Docker hosts
- CVE-2020-15157: Vulnerability in Containerd Can Leak Cloud Credentials
- Docker API vulnerability allows hackers to mine Monero
- Docker Registries Expose Hundreds of Orgs to Malware, Data Theft
- Docker Registry HTTP API v2 exposed in HTTP without authentication leads to docker images dumping and poisoning
Blogs
Tools
- anchorOthers
A tool to ensure reproducible builds by pinning dependencies inside your Dockerfiles
- Anchore EngineContainer Scanning
An open source project that provides a centralized service for inspection, analysis and certification of container images. Access the engine through a RESTful API and Anchore CLI then integrated with your CI/CD pipeline.
- baneOthers
Custom & better AppArmor profile generator for Docker containers.
- BOtBPentesting
Container analysis and exploitation tool designed to be used by pentesters and engineers while also being CI/CD friendly with common CI/CD technologies.
- CIS Docker Benchmark - InSpec profileCompliance
Compliance profile implement the CIS Docker 1.13.0 Benchmark in an automated way to provide security best-practice tests around Docker daemon and containers in a production environment
- ClairContainer Scanning
Vulnerability Static Analysis to discovering Common Vulnerability Exposure (CVE) on containers and can integrate with CI like Gitlab CI which included on their
Videos
- Best practices for building secure Docker images
- BSidesSF 2020 - Checking Your --privileged Container
Checking Your --privileged Container
- DockerCon 2018 - Docker Container Security
Docker Container Security
- DockerCon 2019 - Hardening Docker daemon with Rootless mode
Hardening Docker daemon with Rootless mode
- DokcerCon 2019 - Container Security: Theory & Practice at Netflix
Container Security: Theory & Practice at Netflix
- Live Container Hacking: Capture The Flag - Andrew Martin (Control Plane) vs Ben Hall (Katacoda)
Andrew Martin (Control Plane) vs Ben Hall (Katacoda)
Showing a sample of 77 resources. View the full list on GitHub โ