Auditing Docker Containers
Auditing docker containerised environment from a security perspective involves identifying security misconfigurations while deploying and running docker containers. Auditing docker containers and its runtime environment requires inspecting the following components.
- Docker images
- Docker containers
- Docker networks
- Docker registries
- Docker volumes
- Docker runtime
In this section we will explore tools and techniques that allows an auditor to effectively perform a security audit of docker based containerised environment.