Skip to content
/ cnitch Public
forked from nicholasjackson/cnitch

Container Snitch checks running processes under the Docker Engine and alerts if any are found to be running as root

0 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mhausenblas/cnitch

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits

.circleci

.circleci

 
 

cmd

cmd

 
 

reporting

reporting

 
 

rules

rules

 
 

vendor

vendor

 
 

Gopkg.lock

Gopkg.lock

 
 

Gopkg.toml

Gopkg.toml

 
 

README.md

README.md

 
 

cnitch.go

cnitch.go

 
 

Repository files navigation

Cntich CircleCI

Cnitch is a framework for monitoring processes inside of Docker to identify any processes which are running as root.

Cnitch will monitor processes running under the docker engine every 5s and will alert when a process in a container is found to be running as root.

Currently WIP.

How to run

  • Set environment variable DOCKER_HOST pointed at your docker engine
  • execute go run main.go
  • run some containers

Roadmap:

  • Library which can be implemented as a plugin into applications
  • Docker container
  • Pluggable alerting framework

About

Container Snitch checks running processes under the Docker Engine and alerts if any are found to be running as root

Topics

security containers

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 100.0%