Awesome Docker Malware Analysis Save

Repository of tools and resources for analyzing Docker containers

Project README

Awesome Docker Malware Analysis Tools

Awesome

Docker can be a useful tool for malware analysis. It can also be used to run coin miners and ddos bots. This repository is to document both tools for analyzing the structure of docker containers, identifying malicious containers and using containers for analyzing potentially malicious files.

See Contributing.

Stand alone tools:

  • docker_save_to_file - Standalone tool for downloding a docker image from DockerHub and saving to a local file
  • container_detail.py - Python script to print the high level details of an exported container
  • triage-binary - Quickly identify the presence of ATT&CK technique indicators. It can also be used for binary clustering when comparing samples of the same malware family.
  • docker-image-extract - Minimal-dependency shell script to pull and extract all files from an image in Docker Hub
  • dive - A tool for exploring a docker image, layer contents, and discovering ways to shrink the size of your Docker/OCI image.

Reports / Blogs / Reading

Contributing

I welcome PR / Issues. Easiest

 * [Name](Link) - Description
Open Source Agenda is not affiliated with "Awesome Docker Malware Analysis" Project. README Source: silascutler/awesome-docker-malware-analysis
Stars
52
Open Issues
1
Last Commit
7 months ago

Open Source Agenda Badge

Open Source Agenda Rating