diff --git a/_posts/2023-12-24-how-to-integrate-docker-scout-with-azure-container-registry.md b/_posts/2023-12-24-how-to-integrate-docker-scout-with-azure-container-registry.md index d07bd11f..4d0cf60c 100644 --- a/_posts/2023-12-24-how-to-integrate-docker-scout-with-azure-container-registry.md +++ b/_posts/2023-12-24-how-to-integrate-docker-scout-with-azure-container-registry.md @@ -13,7 +13,7 @@ tags: - Container --- Before starting, let's understand what exactly is **Docker Scout**? -Docker Scout is a container image scanning tool built within Docker Desktop as well as CLI with mindset of Shift-Left approach.It lies on the top of the Docker ecosystem and helps developers to find container image vulnerabilities at the time of image build,thus helps organisation to ship secure entire supply chain.Now one might be confused is Docker-Scout another CNAPP tool? As per [official documentation](https://docs.docker.com/scout/),it uses SBOM(Software Bill of Material) with 17+ advisory Databases to analyze and scan images with real time CVEs updates. +Docker Scout is a container image scanning tool built within Docker Desktop as well as CLI with mindset of Shift-Left approach.It lies on the top of the Docker ecosystem and helps developers to find container image vulnerabilities at the time of image build,thus helps organisation to ship secure entire supply chain.Now one might be confused is that Docker-Scout another CNAPP tool? As per [official documentation](https://docs.docker.com/scout/),it uses SBOM(Software Bill of Material) with 17+ advisory Databases to analyze and scan images with real time CVEs updates. Now let's see how we can integrate with [Azure Container Registry](https://learn.microsoft.com/en-us/azure/container-registry/) to scan real time image. @@ -34,11 +34,11 @@ Now let's see how we can integrate with [Azure Container Registry](https://learn 9. Locally Docker Installed, if using Laptop CLI **LAB** -In this lab I have take [OWASP Juice Shop App](https://github.com/juice-shop/juice-shop) as container image to scan with Docker Scout. +In this lab I have taken [OWASP Juice Shop App](https://github.com/juice-shop/juice-shop) as container image to scan with Docker Scout. ## Azure Container Registry(Azure portal) -* Go to Azure Portal and search for container Registry and create one.Just for testing I have allowed all public network access to registry from Networking blade,but in production use private N/W +* Go to Azure Portal and search for container Registry and create one.Just for testing I have allowed all public network access to registry from Networking blade,but in the production use private N/W ![image](https://res.cloudinary.com/hugs4bugs/image/upload/v1703497968/hugs4bugs/dockerscout/IMG_6067_ppa5qu.jpg) * After successful ACR creation, you'll get unique login server @@ -61,13 +61,12 @@ You will see OWASP Juice Shop application can be accessible over port 3000. This ![Local APp](https://res.cloudinary.com/hugs4bugs/image/upload/v1703499102/hugs4bugs/dockerscout/jshop_sk06vw.jpg) -* Now tag this image and push it to ACR -for tag use following command +* Now tag this image and push it to ACR using following command ``` docker tag bkimminich/juice-shop dockerscoutshubhendu.azurecr.io/owasp:v1 ``` -Replace your my loginserver with your own +Replace my loginserver with yours. * Push it to ACR @@ -95,11 +94,11 @@ after that, you will get ARM template to deploy, basically this ARM template wil ![image](https://res.cloudinary.com/hugs4bugs/image/upload/v1703500699/hugs4bugs/dockerscout/azureee_q2nde4.jpg) Make sure to deploy Docker Scout resources to the same resource group as the registry.Then review and create. -After successful deployment go to your ACR--> Tokens from Repository Permission blade and copy token, then generate password. You can set password expiration date too. But remember to copy and save password locally, once window is close same password can't be retrived. You need to regenrate. +After successful deployment go to your ACR--> Tokens from Repository Permission blade and copy token, then generate password. You can set password expiration date too. But remember to copy and save password locally, once window is close same password can't be retrived. You need to regenerate. ![Image](https://res.cloudinary.com/hugs4bugs/image/upload/v1703501159/hugs4bugs/dockerscout/IMG_6071_jqu7is.jpg) -Same Token/password put into Docker Scout Registry Token blade and click on enable integration. +Copy the same Token/password put into Docker Scout Registry Token blade and click on enable integration. ![image](https://res.cloudinary.com/hugs4bugs/image/upload/v1703501288/hugs4bugs/dockerscout/rtt_tk7vne.jpg) @@ -116,12 +115,12 @@ Jump over image blade,there our ACR image is scanned with list of vulnerabilitie Jump over Vulnerabilites blade for more details ![image](https://res.cloudinary.com/hugs4bugs/image/upload/v1703501772/hugs4bugs/dockerscout/dscoutvlncve_u7trma.jpg) -To mitigate vulnerabilities jump to patch blade and follow the patch released by specific vendor. +To mitigate vulnerabilities, jump to patch blade and follow the patch released by specific vendor. ![image](https://res.cloudinary.com/hugs4bugs/image/upload/v1703502034/hugs4bugs/dockerscout/dscoutpath_tvzbfg.jpg) We can check all centralised details from overview blade too. ![image](https://res.cloudinary.com/hugs4bugs/image/upload/v1703502220/hugs4bugs/dockerscout/ov_gzscav.jpg) -and we can deploy our own custom policies to set rules from Ploicies blade. +and we can deploy our own custom policies from Ploicies blade to set rules. Thanks for reading blog, keep troubleshooting! \ No newline at end of file diff --git a/_site/2021-08-2-Understanding-basics-of-security/index.html b/_site/2021-08-2-Understanding-basics-of-security/index.html index e0b407d6..1b5602ff 100644 --- a/_site/2021-08-2-Understanding-basics-of-security/index.html +++ b/_site/2021-08-2-Understanding-basics-of-security/index.html @@ -340,29 +340,29 @@

See also

  • - + - + -

    Automation with Jenkins and GitHub

    +

    Microsoft Defender for Cloud 101
  • - + - + -

    Azure Networking 101

    +

    Kali Linux vs Parrot OS
  • - + - + -

    Managing and Storing Secrets:Azure Vault.🙆

    +

    Docker 101
    • diff --git a/_site/Automation-with-Jenkins-and-Github/index.html b/_site/Automation-with-Jenkins-and-Github/index.html index 9c6e34b3..68e1135d 100644 --- a/_site/Automation-with-Jenkins-and-Github/index.html +++ b/_site/Automation-with-Jenkins-and-Github/index.html @@ -473,29 +473,29 @@

    See also

  • - + - + -

    Managing and Storing Secrets:Azure Vault.🙆

    +

    How to create & Manage users and Groups within Azure AD.
  • - + - + -

    How to install ThreatMapper in Kali Linux?

    +

    Access Management 101.
  • - + - + -

    Automate Firebase hosting with Github Actions and Ruby.

    +

    WAF vs IPS
    • diff --git a/_site/Docker-101/index.html b/_site/Docker-101/index.html index a2ed8810..523e347d 100644 --- a/_site/Docker-101/index.html +++ b/_site/Docker-101/index.html @@ -619,11 +619,11 @@

    See also

  • - + - + -

    Automate Email with Azure Logic App

    +

    Access Management 101.
    • @@ -637,11 +637,11 @@

    How to create & Manage users and Groups within Azure AD.

  • - + - + -

    Metasploit Framework vs Metasploit Pro

    +

    The Blue Team.☠️
    • diff --git a/_site/Fundamentals-of-Network-security/index.html b/_site/Fundamentals-of-Network-security/index.html index 08b89ccf..88dcb689 100644 --- a/_site/Fundamentals-of-Network-security/index.html +++ b/_site/Fundamentals-of-Network-security/index.html @@ -479,29 +479,29 @@

    See also

  • - + - + -

    Automation with Jenkins and GitHub

    +

    Automate Email with Azure Logic App
  • - + - + -

    Automate Email with Azure Logic App

    +

    Do you use ls -lrt?
  • - + - + -

    Building and Deploying PWA on Azure Cloud.

    +

    Tools that SOC/Security Analyst must know
    • diff --git a/_site/How-to-install-Jenkins-on-Linux/index.html b/_site/How-to-install-Jenkins-on-Linux/index.html index 7aba2deb..5192c263 100644 --- a/_site/How-to-install-Jenkins-on-Linux/index.html +++ b/_site/How-to-install-Jenkins-on-Linux/index.html @@ -427,20 +427,20 @@

    See also

  • - + - + -

    Building and Deploying PWA on Azure Cloud.

    +

    Tools that SOC/Security Analyst must know
  • - + - + -

    Metasploit Framework vs Metasploit Pro

    +

    Docker 101
    • diff --git a/_site/How-to-install-threatmapper-in-kali-linux/index.html b/_site/How-to-install-threatmapper-in-kali-linux/index.html index 8ac05535..1e0146a3 100644 --- a/_site/How-to-install-threatmapper-in-kali-linux/index.html +++ b/_site/How-to-install-threatmapper-in-kali-linux/index.html @@ -480,29 +480,29 @@

    See also

  • - + - + -

    How to like Instagram posts with JavaScript?

    +

    Fundamentals of Network Security.☠️
  • - + - + -

    How to create & Manage users and Groups within Azure AD.

    +

    Azure Networking 101
  • - + - + -

    What is chatGpt? How to use it?

    +

    WAF vs Firewall
    • diff --git a/_site/How-to-onboard-your-Microsoft-Sentinel-from-scratch/index.html b/_site/How-to-onboard-your-Microsoft-Sentinel-from-scratch/index.html index 4e766e75..53f44c56 100644 --- a/_site/How-to-onboard-your-Microsoft-Sentinel-from-scratch/index.html +++ b/_site/How-to-onboard-your-Microsoft-Sentinel-from-scratch/index.html @@ -416,29 +416,29 @@

    See also

  • - + - + -

    Benifits of CI/CD

    +

    Kali Linux vs Parrot OS
  • - + - + -

    Progressive WebApp.

    +

    College to Cyber Security Journey
  • - + - + -

    How to integrate Docker Scout with Azure Container Registry

    +

    Metasploit Framework vs Metasploit Pro
    • diff --git a/_site/Progressive-web-app/index.html b/_site/Progressive-web-app/index.html index 9ba0caa3..9bab0038 100644 --- a/_site/Progressive-web-app/index.html +++ b/_site/Progressive-web-app/index.html @@ -795,29 +795,29 @@

    See also

  • - + - + -

    Metasploit Framework vs Metasploit Pro

    +

    Search engines one should know as a CyberSecurity enthausist!
  • - + - + -

    Automation with Jenkins and GitHub

    +

    What is Microsoft Defender Threat Intelligence
  • - + - + -

    How to onboard your first Microsoft sentinel SIEM tool?

    +

    Benifits of CI/CD
    • diff --git a/_site/Progressive-webapps-on-azure/index.html b/_site/Progressive-webapps-on-azure/index.html index a4514e69..7f85cc21 100644 --- a/_site/Progressive-webapps-on-azure/index.html +++ b/_site/Progressive-webapps-on-azure/index.html @@ -1298,29 +1298,29 @@

    See also

  • - + - + -

    The Blue Team.☠️

    +

    Automate Twitter via github Actions.
  • - + - + -

    Blue Team vs Red Team

    +

    Linux Cheat Sheet 101
  • - + - + -

    Protection against Security threat on Azure.☠️

    +

    Automation with Jenkins and GitHub
    • diff --git a/_site/What-is-Microsoft-Defender-Threat-Intelligence(MDTI)/index.html b/_site/What-is-Microsoft-Defender-Threat-Intelligence(MDTI)/index.html index c2cd66f8..04767385 100644 --- a/_site/What-is-Microsoft-Defender-Threat-Intelligence(MDTI)/index.html +++ b/_site/What-is-Microsoft-Defender-Threat-Intelligence(MDTI)/index.html @@ -418,29 +418,29 @@

    See also

  • - + - + -

    WAF vs IPS

    +

    Automate Firebase hosting with Github Actions and Ruby.
  • - + - + -

    How to install ThreatMapper in Kali Linux?

    +

    Anyone can build: node.js+ Cosmos DB in Azure

  • - + - + -

    Automate Twitter via github Actions.

    +

    Progressive WebApp.
    • diff --git a/_site/access-management-101/index.html b/_site/access-management-101/index.html index 39c59719..0aca056b 100644 --- a/_site/access-management-101/index.html +++ b/_site/access-management-101/index.html @@ -418,29 +418,29 @@

    See also

  • - + - + -

    How to install ThreatMapper in Kali Linux?

    +

    The Blue Team.☠️
  • - + - + -

    What is Microsoft Defender Threat Intelligence

    +

    Tools that SOC/Security Analyst must know
  • - + - + -

    How to install JENKINS on Linux ?

    +

    Search engines one should know as a CyberSecurity enthausist!
    • diff --git a/_site/automation-with-firebase-and-ruby/index.html b/_site/automation-with-firebase-and-ruby/index.html index f1cf5849..813c237c 100644 --- a/_site/automation-with-firebase-and-ruby/index.html +++ b/_site/automation-with-firebase-and-ruby/index.html @@ -475,29 +475,29 @@

    See also

  • - + - + -

    Access Management 101.

    +

    How to integrate Docker Scout with Azure Container Registry
  • - + - + -

    What is Microsoft Defender Threat Intelligence

    +

    Search engines one should know as a CyberSecurity enthausist!
  • - + - + -

    Automate Twitter via github Actions.

    +

    What is Microsoft Defender Threat Intelligence
    • diff --git a/_site/azure-networking-101/index.html b/_site/azure-networking-101/index.html index 986f2201..81929692 100644 --- a/_site/azure-networking-101/index.html +++ b/_site/azure-networking-101/index.html @@ -337,29 +337,29 @@

    See also

  • - + - + -

    How to install JENKINS on Linux ?

    +

    Docker 101
  • - + - + -

    Automate Email with Azure Logic App

    +

    How to create & Manage users and Groups within Azure AD.
  • - + - + -

    WAF vs Firewall

    +

    How to integrate Docker Scout with Azure Container Registry
    • diff --git a/_site/benifits-of-CI/index.html b/_site/benifits-of-CI/index.html index ac0350d1..88f04c85 100644 --- a/_site/benifits-of-CI/index.html +++ b/_site/benifits-of-CI/index.html @@ -406,29 +406,29 @@

    See also

  • - + - + -

    Azure Networking 101

    +

    Automate Email with Azure Logic App
  • - + - + -

    Access Management 101.

    +

    Automate Firebase hosting with Github Actions and Ruby.
  • - + - + -

    WAF vs Firewall

    +

    Azure Networking 101
    • diff --git a/_site/best-linux-cheatsheet-101/index.html b/_site/best-linux-cheatsheet-101/index.html index 605e2358..ab8dcb7f 100644 --- a/_site/best-linux-cheatsheet-101/index.html +++ b/_site/best-linux-cheatsheet-101/index.html @@ -1214,29 +1214,29 @@

    See also

  • - + - + -

    Fundamentals of Network Security.☠️

    +

    Benifits of CI/CD
  • - + - + -

    Automate Email with Azure Logic App

    +

    Automate Twitter via github Actions.
  • - + - + -

    Kali Linux vs Parrot OS

    +

    Tools that SOC/Security Analyst must know
    • diff --git a/_site/blue-team-vs-red-team-in-cyber-security/index.html b/_site/blue-team-vs-red-team-in-cyber-security/index.html index f515ee17..429ae992 100644 --- a/_site/blue-team-vs-red-team-in-cyber-security/index.html +++ b/_site/blue-team-vs-red-team-in-cyber-security/index.html @@ -516,29 +516,29 @@

    See also

  • - + - + -

    Metasploit Framework vs Metasploit Pro

    +

    Tools that SOC/Security Analyst must know
  • - + - + -

    Do you use ls -lrt?

    +

    Automate Twitter via github Actions.
  • - + - + -

    Managing and Storing Secrets:Azure Vault.🙆

    +

    Automation with Jenkins and GitHub
    • diff --git a/_site/bulid-and-deploy-MERN-stack-in-Azure-cosmos-DB/index.html b/_site/bulid-and-deploy-MERN-stack-in-Azure-cosmos-DB/index.html index 0b7adec6..a6d7e5e5 100644 --- a/_site/bulid-and-deploy-MERN-stack-in-Azure-cosmos-DB/index.html +++ b/_site/bulid-and-deploy-MERN-stack-in-Azure-cosmos-DB/index.html @@ -1184,29 +1184,29 @@

    See also

  • - + - + -

    What is chatGpt? How to use it?

    +

    College to Cyber Security Journey
  • - + - + -

    What is Microsoft Defender Threat Intelligence

    +

    Automate Email with Azure Logic App
  • - + - + -

    Benifits of CI/CD

    +

    Building and Deploying PWA on Azure Cloud.
    • diff --git a/_site/cloud-native-CNAPP-tool-Microsoft-defender-for-cloud-101/index.html b/_site/cloud-native-CNAPP-tool-Microsoft-defender-for-cloud-101/index.html index b8f47f93..1e4ec546 100644 --- a/_site/cloud-native-CNAPP-tool-Microsoft-defender-for-cloud-101/index.html +++ b/_site/cloud-native-CNAPP-tool-Microsoft-defender-for-cloud-101/index.html @@ -575,29 +575,29 @@

    See also

  • - + - + -

    How to onboard your first Microsoft sentinel SIEM tool?

    +

    Progressive WebApp.
  • - + - + -

    How to create & Manage users and Groups within Azure AD.

    +

    How to integrate Docker Scout with Azure Container Registry
  • - + - + -

    Managing and Storing Secrets:Azure Vault.🙆

    +

    The Blue Team.☠️
    • diff --git a/_site/college-to-cyber-security/index.html b/_site/college-to-cyber-security/index.html index 0d6694a3..3e65112b 100644 --- a/_site/college-to-cyber-security/index.html +++ b/_site/college-to-cyber-security/index.html @@ -396,29 +396,29 @@

    See also

  • - + - + -

    Progressive WebApp.

    +

    How to create & Manage users and Groups within Azure AD.
  • - + - + -

    Tools that SOC/Security Analyst must know

    +

    Automate Email with Azure Logic App
  • - + - + -

    Protection against Security threat on Azure.☠️

    +

    Automation with Jenkins and GitHub
    • diff --git a/_site/computer-networking-basics/index.html b/_site/computer-networking-basics/index.html index d7d2ef19..b195a747 100644 --- a/_site/computer-networking-basics/index.html +++ b/_site/computer-networking-basics/index.html @@ -1102,29 +1102,29 @@

    See also

  • - + - + -

    How to like Instagram posts with JavaScript?

    +

    WAF vs Firewall
  • - + - + -

    Blue Team vs Red Team

    +

    Progressive WebApp.
  • - + - + -

    How to onboard your first Microsoft sentinel SIEM tool?

    +

    Kali Linux vs Parrot OS
    • diff --git a/_site/difference-between-WAF-and-IPS/index.html b/_site/difference-between-WAF-and-IPS/index.html index 3d3c0dd5..d52d85ad 100644 --- a/_site/difference-between-WAF-and-IPS/index.html +++ b/_site/difference-between-WAF-and-IPS/index.html @@ -429,29 +429,29 @@

    See also

  • - + - + -

    How to install ThreatMapper in Kali Linux?

    +

    Automate Firebase hosting with Github Actions and Ruby.
  • - + - + -

    Tools that SOC/Security Analyst must know

    +

    Automate Twitter via github Actions.
  • - + - + -

    Kali Linux vs Parrot OS

    +

    Azure Networking 101
    • diff --git a/_site/feed.xml b/_site/feed.xml index 6b44f3ec..02d99821 100644 --- a/_site/feed.xml +++ b/_site/feed.xml @@ -5,13 +5,13 @@ hugs4bugs is an open source blog written by shubhendu shubham on various cloud and technologies to for community help. https://hugs4bugs.me/ - Mon, 25 Dec 2023 11:05:52 +0000 - Mon, 25 Dec 2023 11:05:52 +0000 + Tue, 26 Dec 2023 03:59:06 +0000 + Tue, 26 Dec 2023 03:59:06 +0000 Jekyll v3.9.3 How to integrate Docker Scout with Azure Container Registry - <p>Before starting, let’s understand what exactly is <strong>Docker Scout</strong>? Docker Scout is a container image scanning tool built within Docker Desktop as well as CLI with mindset of Shift-Left approach.It lies on the top of the Docker ecosystem and helps developers to find container image vulnerabilities at the time of image build,thus helps organisation to ship secure entire supply chain.Now one might be confused is Docker-Scout another CNAPP tool? As per <a href="https://docs.docker.com/scout/">official documentation</a>,it uses SBOM(Software Bill of Material) with 17+ advisory Databases to analyze and scan images with real time CVEs updates.</p> <p>Now let’s see how we can integrate... + <p>Before starting, let’s understand what exactly is <strong>Docker Scout</strong>? Docker Scout is a container image scanning tool built within Docker Desktop as well as CLI with mindset of Shift-Left approach.It lies on the top of the Docker ecosystem and helps developers to find container image vulnerabilities at the time of image build,thus helps organisation to ship secure entire supply chain.Now one might be confused is that Docker-Scout another CNAPP tool? As per <a href="https://docs.docker.com/scout/">official documentation</a>,it uses SBOM(Software Bill of Material) with 17+ advisory Databases to analyze and scan images with real time CVEs updates.</p> <p>Now let’s see how we can... Sun, 24 Dec 2023 00:00:00 +0000 https://hugs4bugs.me/how-to-integrate-docker-scout-with-azure-container-registry/ https://hugs4bugs.me/how-to-integrate-docker-scout-with-azure-container-registry/ diff --git a/_site/how-to-automate-tweets-via-github-actions/index.html b/_site/how-to-automate-tweets-via-github-actions/index.html index 1e003aae..0665b4a4 100644 --- a/_site/how-to-automate-tweets-via-github-actions/index.html +++ b/_site/how-to-automate-tweets-via-github-actions/index.html @@ -423,29 +423,29 @@

    See also

  • - + - + -

    Docker 101

    +

    How to create & Manage users and Groups within Azure AD.
  • - + - + -

    Microsoft Defender for Cloud 101

    +

    Docker 101
  • - + - + -

    How to like Instagram posts with JavaScript?

    +

    Anyone can build: node.js+ Cosmos DB in Azure

    • diff --git a/_site/how-to-integrate-docker-scout-with-azure-container-registry/index.html b/_site/how-to-integrate-docker-scout-with-azure-container-registry/index.html index 7e17fbe6..2705a894 100644 --- a/_site/how-to-integrate-docker-scout-with-azure-container-registry/index.html +++ b/_site/how-to-integrate-docker-scout-with-azure-container-registry/index.html @@ -322,7 +322,7 @@

    How to integrate Docker Scout with Azure Container Regist

    Before starting, let’s understand what exactly is Docker Scout? -Docker Scout is a container image scanning tool built within Docker Desktop as well as CLI with mindset of Shift-Left approach.It lies on the top of the Docker ecosystem and helps developers to find container image vulnerabilities at the time of image build,thus helps organisation to ship secure entire supply chain.Now one might be confused is Docker-Scout another CNAPP tool? As per official documentation,it uses SBOM(Software Bill of Material) with 17+ advisory Databases to analyze and scan images with real time CVEs updates.

    +Docker Scout is a container image scanning tool built within Docker Desktop as well as CLI with mindset of Shift-Left approach.It lies on the top of the Docker ecosystem and helps developers to find container image vulnerabilities at the time of image build,thus helps organisation to ship secure entire supply chain.Now one might be confused is that Docker-Scout another CNAPP tool? As per official documentation,it uses SBOM(Software Bill of Material) with 17+ advisory Databases to analyze and scan images with real time CVEs updates.

    Now let’s see how we can integrate with Azure Container Registry to scan real time image.

    @@ -347,13 +347,13 @@

    How to integrate Docker Scout with Azure Container Regist

    LAB -In this lab I have take OWASP Juice Shop App as container image to scan with Docker Scout.

    +In this lab I have taken OWASP Juice Shop App as container image to scan with Docker Scout.

    Azure Container Registry(Azure portal)