DockerVuln is a whiptail project that facilitate to installation and management of vulnerable application docker containers. Whiptail is a TUI(Text User Interface) environment running in linux terminal.
When the application runs, you will see a screen like this. You can select the application you want to start. You probably won't have an application installed on first run. So, no containers can be seen here. But, you can select 'add a new container' and install a new one.
To exit from menu, you can select cancel by pressing the tab keys.
In the adding container menu, you can see indexed containers names and short descriptions. You can install the container belongs to vulnerable apps you want.
In the removing container menu, you can see installed containers. You can select the container you want to remove and delete it.
When a container start, you will see a screen like this. You can reach the app with the browser address "http://localhost".
To stop the container, you can hit the enter and select yes from the incoming yes/no menu.
DockerVuln uses dockerCLI and Whiptail. So you have to make sure them already installed. For debian-based, redhat-based and centos-based systems, the install.sh file checks all the prerequisites and install missing ones.
Kali Linux(debian-based) is the preferred operating system. You can install Prerequisites and DockerVuln with the install.sh file. First of all, you need to be root!
sudo su
wget -O - https://raw.githubusercontent.com/yusufarbc/DockerVuln/main/debian-ubuntu/install.sh | bash;
DockerVuln
For Redhat-based operating system, you can install Prerequisites and DockerVuln with the install.sh file. First of all, you need to be root!
sudo su
wget -O - https://raw.githubusercontent.com/yusufarbc/DockerVuln/main/redhat-fedora/install.sh | bash;
DockerVuln
For CentOS operating system, you can install Prerequisites and DockerVuln with the install.sh file. First of all, you need to be root!
sudo su
wget -O - https://raw.githubusercontent.com/yusufarbc/DockerVuln/main/centos/install.sh | bash;
DockerVuln
If you find a bug you can report from github. And also, you can report the apps you want added to indexApp.lst.