subuser alternatives

Looking for a better tool, or simply want to learn about alternatives? There is typically more than one option.

Alternatives (by tag)

100

Alternative: Anchore

Anchore is a security tool to perform container analysis, inspect and control them.

Project details

Anchore is written in Python.

Strengths

  • + Commercial support available
  • + The source code of this software is available

Anchore project page

84

Alternative: bane

The bane tool is an AppArmor profile generator for Docker containers. It helps with creating the appropriate profile for confinement on system level.

With bane it becomes much easier to create an AppArmor profile. It works by running a Docker container while bane monitors it. Any required permissions will then be stored in the profile.

Project details

bane is written in Golang.

Strengths

  • + The source code of this software is available

Typical usage

  • security monitoring
  • system hardening

bane project page

64

Alternative: DFWFW (Docker Firewall Framework)

DFWFW, short of Docker Firewall Framework, offers easy administration of the iptables rules of Docker containers. It updates using event streams.

Project details

DFWFW is written in Perl.

Strengths

  • + The source code of this software is available

Weaknesses

  • - Full name of author is unknown

Typical usage

  • firewall management

DFWFW project page

76

Alternative: Docker Bench for Security

Docker Bench for Security is a small security scanner to perform several tests that are part of the Docker CIS benchmark.

Project details

Docker Bench for Security is written in shell script.

Strengths

  • + Screen output is colored
  • + More than 25 contributors
  • + More than 2000 GitHub stars
  • + The source code of this software is available

Typical usage

  • application security
  • security assessment

Docker Bench for Security project page

64

Alternative: Dockerscan

Dockerscan is a Docker toolkit for security analysis which includes attacking tools. It is more focused on side of the offensive than defensive.

Project details

Dockerscan is written in Python.

Strengths

  • + More than 500 GitHub stars
  • + The source code of this software is available

Typical usage

  • information gathering
  • security assessment
  • vulnerability scanning

Dockerscan project page