Docker Engine HTTP API enumeration helpers for env vars, secrets, and images.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Relkci from gravatar.com Relkci

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT)
  • Author: Defensive Origins
  • Tags docker , security , enumeration , api , pentest , red-team
  • Requires: Python >=3.8
Classifiers
Report project as malware

Project description

Docker API Enumeration Tools

These scripts query the Docker Engine HTTP API to collect information about containers and secrets.
They are designed for security assessments and administrative auditing, providing quick insights into environment variables, secrets, and general engine configuration.

Warning: Exposing the Docker Engine API without TLS or authentication is a serious security risk.
Use these scripts only against environments you are authorized to assess.

Scripts

EnumEnvVars.py`

Enumerates running and stopped containers, extracts their environment variables, and prints them to the console.
Can also save the results in structured JSON.

EnumSecrets.py

Enumerates Secrets from Docker Swarm mode, attempting to read their values if specified. Can also save the results in structured JSON.

EnumImages.py

Inspects the contents of images for sensitive information such as tokens, keys, etc.

Usage

Environment Variables Enumeration
# Local Docker API (default: http://localhost:2375)
python EnumEnvVars.py

# Remote engine and save to file
python EnumEnvVars.py --url http://docker-host:2375 --out results.json

# Include full /info JSON
python EnumEnvVars.py --show-info-json
Secrets Enumeration
# Local secrets enumeration
python EnumSecrets.py

# Remote engine, attempt values, save to file
python EnumSecrets.py --url http://docker-host:2375 --attempt-values --out secrets.json

# Include full /info JSON
python EnumSecrets.py --show-info-json

Installation

pip install requests alive-progress

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Relkci from gravatar.com Relkci

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT)
  • Author: Defensive Origins
  • Tags docker , security , enumeration , api , pentest , red-team
  • Requires: Python >=3.8
Classifiers

Release history Release notifications | RSS feed

0.1.7

0.1.6

0.1.5

0.1.4

0.1.3

0.1.2

This version

0.1.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

docker_enumsensitive-0.1.1.tar.gz (9.4 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

docker_enumsensitive-0.1.1-py3-none-any.whl (12.0 kB view details)

Uploaded Python 3

File details

Details for the file docker_enumsensitive-0.1.1.tar.gz.

File metadata

  • Download URL: docker_enumsensitive-0.1.1.tar.gz
  • Upload date:
  • Size: 9.4 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.14

File hashes

Hashes for docker_enumsensitive-0.1.1.tar.gz
Algorithm Hash digest
SHA256 dddd664c29b3ace2e5612778e743d88e23cbba5dc8684cf69b17fa520e8a5143
MD5 126651c9b61ed4be0adf7119d608ed40
BLAKE2b-256 14f6a906e52c570870aa32d59d14d085f34be4f646f3713d7fed4f970da11162

See more details on using hashes here.

File details

Details for the file docker_enumsensitive-0.1.1-py3-none-any.whl.

File metadata

File hashes

Hashes for docker_enumsensitive-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 7f76adbd7261b378cb29aef7916c3ac3682cdf4137f0503b032e70da7b3829fd
MD5 d6a0222dbf881d63bef6668226a6364f
BLAKE2b-256 b3326b54ec606a7f90b53c9ddb7ce8f87435cf97efafabfb210811114f7bee71

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page