Dagda is a static analysis tool designed for Docker security assessment and monitoring. The tool performs vulnerability scanning of Docker images and containers by importing known vulnerabilities and exploits into a MongoDB database and cross-referencing installed software packages against this vulnerability data. The tool integrates ClamAV as its antivirus engine to detect trojans, viruses, malware, and other malicious threats within container images. It supports multiple Linux base images including RHEL, Ubuntu, Debian, CentOS, Fedora, and OpenSUSE. Beyond static analysis, Dagda provides runtime monitoring capabilities for the Docker daemon and running containers to detect anomalous activities. This dual approach enables both pre-deployment security assessment and ongoing runtime threat detection. The tool is targeted at security professionals, developers, and DevOps teams who need to ensure the security posture of their containerized applications and infrastructure.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A Ruby script that scans networks for vulnerable third-party web applications and front-ends with known exploitable security flaws.
Crt.sh is a website that allows users to search for SSL/TLS certificates of a targeted domain, providing transparency into certificate logs.
Nmap is an essential network scanning tool used for network security auditing and status monitoring.
Automate OSINT for threat intelligence and attack surface mapping with SpiderFoot.
An AI-powered Google Dorking tool that helps create effective search queries to uncover sensitive information on the internet.
FullHunt is a next-generation attack surface security platform that enables companies to discover, monitor, and secure their external attack surfaces.
A search engine for the Internet of Things (IoT) that provides real-time information about connected devices.
A LinkedIn reconnaissance tool for gathering information about companies and individuals on the platform.
All-in-one vulnerability intelligence platform for prioritizing remediation efforts and driving security strategies.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.