Tool comparison of Docker security scanner
Finding the right tool for the job can be difficult task. This sheet compares Clair, Docker Bench for Security, Dockerscan, and Lynis.
Clair | Docker Bench for Security | Dockerscan | Lynis | |
---|---|---|---|---|
Description | Clair is an open source container analyzer. It performs static analysis of container images and correlates their contents with public vulnerability databases. | Docker Bench for Security is a small security scanner to perform several tests that are part of the Docker CIS benchmark. | Dockerscan is a Docker toolkit for security analysis which includes attacking tools. It is more focused on side of the offensive than defensive. | Lynis is a security auditing tool for systems running Linux, macOS, or Unix. It can be used for security assessments and configuration audits. |
Dependencies | Python 3, booby-ng, click, colorlog, ndg-httpsclient, pyOpenSSL, pyasn1, python-dxf, requests | |||
Strenghts |
|
|
|
|
Weaknesses | ||||
Programming language(s) | Golang | Shell script | Python | Shell script |
Last release | 4.6.0 (2023-01-20) | 1.3.6 (2022-03-07) | Unknown | 3.0.8 (2022-05-17) |
Tool page (last updated) | 2023-01-21 | 2022-12-02 | 2021-05-08 | 2022-11-13 |
Tool score | 78 | 68 | 64 | 93 |
Download | ||||
More information |