What is the target for scan command?

Question

What is the target for scan command?

starnightcyber opened this issue 5 years ago · comments

To use dockerscan image sub-command, we need to give a image file.
And it just works fine.

# dockerscan image info ./mysql.tar

But when i use dockerscan scan sub-command, it doesn't.

[root@localhost docker]# dockerscan scan --help
Usage: dockerscan scan [OPTIONS] TARGET

  Search for Open Docker Registries

Options:
  -t, --timeout TEXT  timeout for each port-check
  -p, --ports TEXT    ports to test. i.e: 80,443,8000-8080
  -c TEXT             Maximum concurrency scans
  -h, --help          Show this message and exit.
[root@localhost docker]# dockerscan scan mysql.tar 
[ * ] Starting the scanning
[ * ]  !! [Errno -2] Name or service not known

I wonder what is the target for the command, any example for me ? Thanks!

Gafera · Answer 1 · Thu Mar 26 2020 21:40:43 GMT+0800 (China Standard Time)

Managed to solve, @starnightcyber? I have the same problem.

starnightcyber · Answer 2 · Thu Mar 26 2020 21:52:54 GMT+0800 (China Standard Time)

No.
It seems 'scan sub-command' does not available .
And I recommend three docker-scan tools for you:

docker-bench-security
clair
anchore

you can find them in github.

Gafera · Answer 3 · Fri Mar 27 2020 01:15:15 GMT+0800 (China Standard Time)

Thank you very much, I have already tested the suggested tools, they are great.

starnightcyber · Answer 4 · Fri Mar 27 2020 08:02:54 GMT+0800 (China Standard Time)

OK. You are welcome.