Skip to content

subodh-dharma/dockergate

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

118 Commits
data
data
 
 
docs
docs
 
 
src
src
 
 
syscall_library
syscall_library
 
 
test
test
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
dockergate.py
dockergate.py
 
 

Repository files navigation

DockerGate

Automated Seccomp policy generation for docker images

DockerGate is a framework, which generates seccomp policies for the Docker Images. It currently supports docker images with base image as Ubuntu.

Installation:

Requirements:

  • Ubuntu Xenial (16.04)
  • seccomp enabled
  • Python 2.7
  • Docker Hub account
  1. Install the underlying framework banyanops/collector using the following
$ cd tools/banyansetup
$ sh setup.sh
  1. Create following environment variables of your Docker Hub username and password
$DOCKER_USER
$DOCKER_PASSWORD

Usage:

From the root directory of the repository execute the following command:

$ python dockergate.py <image-name>

This will invoke the driver program of the DockerGate framework and generate the seccomp policy in json format under the folder data/policy/image_name.json

Quick Links:

Link to Research paper

Official Docker Hub Images list : Github Link

Official Images Dockerfiles : Contains Dockerfiles for Official Images on Docker Hub (all versions)

Community Images Dockerfiles : Contains Dockerfiles of randomly selected community images on Docker Hub

Community Image Scraper : A custom web scraper developed for scanning community docker images on Docker Hub

About

Automated Seccomp policy generation for docker images

Topics

docker security docker-image policy seccomp

Resources

Readme
Activity

Stars

7 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages