This repository is a collection of attacks created to exploit the "sensitive" parameters of Docker, searchable in docker run reference. A replication guide can be found in each directory.
The repository is organized as follows:
Replication of attacks on Docker referred to Understanding the Security Risks of Docker Hub.
The reference directory is attacks_replication.
They represent new attacks that aim to exploit "sensitive" Docker parameters and present in new_attacks.
A simple web server that allows the execution of some attacks, found in simple_web_server.
Through the use of the tools listed below, security analysis was performed on the created docker containers to see if they can detect the presence of inserted malicious scripts. The results can be found in analysis_results.
The tools used are: