drydock Logo

drydock

0
Free
Visit Website

drydock is a Docker security audit tool written in Python. It allows for the easy creation and use of custom audit profiles to eliminate noise and false alarms. Reports are saved in JSON format for easier parsing. drydock is based on the CIS Docker 1.6 Benchmark and heavily uses the docker-py client API for communication with Docker. To use drydock, clone the repository, install requirements, and run the tool with a provided profile or create custom profiles.

FEATURES

ALTERNATIVES

Cloud security project focusing on discovering and protecting privileged entities in AWS and Azure environments.

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

A collection of security workshops and hands-on content for AWS security services and techniques

A CLI utility that makes it easier to switch between different AWS roles

Krampus is a security solution for managing AWS objects and can be used as a cost-control tool.

A CLI tool to simplify the use of AWS Systems Manager Session Manager

Open-source project for detecting security risks in cloud infrastructure accounts with support for AWS, Azure, GCP, OCI, and GitHub.

Burp extension for identifying cloud buckets and testing for vulnerabilities