Giter Site home page Giter Site logo

dockerexploit's Introduction

Docker Remote API Scanner and Exploit

Banner

DISCLAIMER: This educational material is provided for learning and research purposes only. The developer and publisher of this content do not accept any responsibility or liability for any misuse or unlawful actions conducted by individuals who have accessed or utilized this material.

Introduction

This repository contains a Docker Remote API Scanner and Exploit tool designed for educational and research purposes. It enables users to perform security assessments and experiments related to Docker container environments.

Features

  • Mass scanning and exploitation of Docker hosts
  • Interactive mode for manual interactions
  • Specify the target Docker API URL
  • Input a list of targets from a file
  • Generate output for your scans and exploitation results

Usage

To get started, you can use the following command-line options:

  • --url URL: Specify the target Docker API URL.
  • --file FILE: Specify a file for input, providing a list of target URLs.
  • --output OUTPUT: Specify a file for output to save the results of your scans and exploitation.
  • --mass-check: Enable mass scanning and exploitation.
  • --exploit: Exploit target(s).
  • --interact: Enter interactive mode for manual interactions.

Single Scan

python docker_remote_api_exploit.py --url http://127.0.0.1 --output potential.txt

Mass Scan

python docker_remote_api_exploit.py --file targets.txt --mass-check --output potential.txt

Single Exploit

python docker_remote_api_exploit.py --url http://127.0.0.1 --exploit --output exploited.txt

Single Exploit (Interaction Mode)

python docker_remote_api_exploit.py --url http://127.0.0.1 --exploit --interact --output exploited.txt

Mass Exploit

python docker_remote_api_exploit.py --file potential.txt --exploit --output exploited.txt

Contributing

Contributions are welcome! Feel free to create issues, propose new features, or submit pull requests to improve this tool. Please ensure that your contributions align with the intended use of this repository.

License

This tool is available under the MIT License. Please review the license before using or contributing to this project.

Disclaimer

By using this tool, you acknowledge and agree to the terms and conditions outlined in the DISCLAIMER section above.

Author

For educational and research purposes only. Use responsibly and ethically.

GitHub

dockerexploit's People

Contributors

justakazh avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.