drydock Logo

drydock

0
Free
Visit Website

drydock is a Docker security audit tool written in Python. It allows for the easy creation and use of custom audit profiles to eliminate noise and false alarms. Reports are saved in JSON format for easier parsing. drydock is based on the CIS Docker 1.6 Benchmark and heavily uses the docker-py client API for communication with Docker. To use drydock, clone the repository, install requirements, and run the tool with a provided profile or create custom profiles.

FEATURES

ALTERNATIVES

Anchore Enterprise is a platform that protects and secures software supply chains end-to-end.

Commercial

A framework to analyze container images and gather useful information.

Automatically compile AWS SCPs for compliant AWS services based on preferred frameworks.

Find exposed AWS cloud assets that you did not know you had.

A cloud-native application protection platform that provides comprehensive security monitoring, vulnerability management, and threat detection for cloud environments and container workloads.

Commercial

A project exploring minimal set of restrictions for running untrusted code using Linux containers in a concise codebase.

CLI tool for deleting AWS resources in bulk with inspecting functionality.

An open-source security tool for AWS, Azure, Google Cloud, and Kubernetes security assessments and audits.

PINNED