Closed am0o0 closed 1 month ago
Thank you @am0o0 for willing to contribute. It seems like we already have a detector for this: https://github.com/google/tsunami-security-scanner-plugins/tree/master/google/detectors/exposedui/docker
Feel free to reopen an issue if you think I was mistaken.
~tooryx
@tooryx you are correct but the plugin you mentioned simply checks for a response, I can check for out-of-band calls with command execution which I guess is your preferred method.
Also, I think that I don't have enough permission to reopen this issue.
I found a similar issue in which @JamesFoxxx
improved the current plugin.
https://github.com/google/tsunami-security-scanner-plugins/issues/441
I will discuss it with the rest of the devteam.
Hi @am0o0,
I discussed this with the rest of the devteam. If it would indeed improve the quality of the plugin, it is not the priority right now and we would rather work on other detectors.
Please let me know your thoughts, ~tooryx
as we have in documentation docker daemon can be exposed by a network IP address too. please refer to https://docs.docker.com/config/daemon/remote-access/