100 Methods for Container Attacks

Jan 26, 2025

∙ Paid

Insecure Container Images

Using Trivy:

trivy -q -f json <container_name>:<tag> | jq '.[] | select(.Vulnerabilities != null)'

This command uses Trivy, a vulnerability scanner for containers, to scan a specific container image (<container_name>:<tag>) for vulnerabilities. The -q flag suppresses the output, and the -f json flag formats the output as JSON.

The…

Continue reading this post for free, courtesy of Reza.

Or purchase a paid subscription.

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts

RedTeamGuides

100 Methods for Container Attacks

Insecure Container Images

Continue reading this post for free, courtesy of Reza.