Skip to content

Latest commit

 

History

History
 
 

docker

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
go-cve-dictionary/latest
go-cve-dictionary/latest
 
 
vuls/latest
vuls/latest
 
 
vulsrepo/latest
vulsrepo/latest
 
 
README.md
README.md
 
 

README.md

Vuls Docker components

This is the Git repo of the official Docker image for vuls.

Supported tags and respective Dockerfile links

This image version is same as the github repository version.

Caution

This image is built per commit. If you want to use the latest docker image, you should remove the existing image, and pull it once again.

  1. Confirm your vuls version
  • go-cve-dictionary
$ docker run  --rm  vuls/go-cve-dictionary -v

go-cve-dictionary v0.0.xxx xxxx
  • vuls
$ docker run  --rm  vuls/vuls -v

vuls v0.0.xxx xxxx
  1. Remove your old docker images
  • go-cve-dictionary
$ docker rmi vuls/go-cve-dictionary
  • vuls
$ docker rmi vuls/vuls
  1. Pull new vuls docker images
  • go-cve-dictionary
$ docker pull vuls/go-cve-dictionary
  • vuls
$ docker pull vuls/vuls
  1. Confirm your vuls version
$ docker run  --rm  vuls/go-cve-dictionary -v

go-cve-dictionary v0.1.xxx xxxx
  • vuls
$ docker run  --rm  vuls/vuls -v

vuls v0.1.xxx xxxx

How to use this image

  1. fetch nvd (vuls/go-cve-dictionary)
  2. configuration (vuls/vuls)
  3. configtest (vuls/vuls)
  4. scan (vuls/vuls)
  5. vulsrepo (vuls/vulsrepo)

Step1. Fetch NVD

$ for i in `seq 2002 $(date +"%Y")`; do \
    docker run --rm -it \
    -v $PWD:/vuls \
    -v $PWD/go-cve-dictionary-log:/var/log/vuls \
    vuls/go-cve-dictionary fetchnvd -years $i; \
  done

Step2. Configuration

Create config.toml referring to this.

[servers]

[servers.amazon]
host         = "54.249.93.16"
port        = "22"
user        = "vuls-user"
keyPath     = "/root/.ssh/id_rsa" # path to ssh private key in docker

Step3. Configtest

$ docker run --rm -it\
    -v ~/.ssh:/root/.ssh:ro \
    -v $PWD:/vuls \
    -v $PWD/vuls-log:/var/log/vuls \
    vuls/vuls configtest \
    -config=./config.toml # path to config.toml in docker

Step4. Scan

$ docker run --rm -it \
    -v ~/.ssh:/root/.ssh:ro \
    -v $PWD:/vuls \
    -v $PWD/vuls-log:/var/log/vuls \
    -v /etc/localtime:/etc/localtime:ro \
    -e "TZ=Asia/Tokyo" \
    vuls/vuls scan \
    -config=./config.toml # path to config.toml in docker

Step5. Report

$ docker run --rm -it \
    -v ~/.ssh:/root/.ssh:ro \
    -v $PWD:/vuls \
    -v $PWD/vuls-log:/var/log/vuls \
    -v /etc/localtime:/etc/localtime:ro \
    vuls/vuls report \
    -cvedb-path=/vuls/cve.sqlite3 \
    -format-short-text \
    -config=./config.toml # path to config.toml in docker

Step6. vulsrepo

$docker run -dt \
    -v $PWD:/vuls \
    -p 80:80 \
    vuls/vulsrepo

User Feedback

Documentation

Documentation for this image is stored in the docker/ directory of the future-architect/vuls GitHub repo.

Issues

If you have any problems with or questions about this image, please contact us through a GitHub issue.

Contributing

  1. fork a repository: github.com/future-architect/vuls to github.com/you/repo
  2. get original code: go get github.com/future-architect/vuls
  3. work on original code
  4. add remote to your repo: git remote add myfork https://github.com/you/repo.git
  5. push your changes: git push myfork
  6. create a new Pull Request