Tool comparison of Docker security scanner
Finding the right tool for the job can be difficult task. This sheet compares Clair, Docker Bench for Security, Dockerscan, and Lynis.
|Clair||Docker Bench for Security||Dockerscan||Lynis|
Clair is an open source container analyzer. It performs static analysis of container images and correlates their contents with public vulnerability databases.
Docker Bench for Security is a small security scanner to perform several tests that are part of the Docker CIS benchmark.
Dockerscan is a Docker toolkit for security analysis which includes attacking tools. It is more focused on side of the offensive than defensive.
Lynis is a security auditing tool for systems running Linux, macOS, or Unix. It can be used for security assessments and configuration audits.
Python 3, booby-ng, click, colorlog, ndg-httpsclient, pyOpenSSL, pyasn1, python-dxf, requests
|Tool page (last updated)|