Skip to content

Instantly share code, notes, and snippets.

View gowth4m's full-sized avatar
🎯
Focusing

Gowtham Sundar gowth4m

🎯
Focusing
45 followers · 45 following
View GitHub Profile
@gowth4m
gowth4m / Perform_Scan_CLI.txt
Last active June 24, 2020 03:04
[ec2-user ~]$ anchore-cli image vuln openjdk:8-jre-alpine os
Vulnerability ID Package Severity Fix CVE Refs Vulnerability URL Type Feed Group Package Path
CVE-2018-1000654 libtasn1-4.13-r0 High 4.14-r0 CVE-2018-1000654 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000654 APKG alpine:3.9 pkgdb
CVE-2019-12900 libbz2-1.0.6-r6 High 1.0.6-r7 CVE-2019-12900 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12900 APKG alpine:3.9 pkgdb
CVE-2019-14697 musl-1.1.20-r4 High 1.1.20-r5 CVE-2019-14697 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14697 APKG alpine:3.9 pkgdb
CVE-2019-14697 musl-utils-1.1.20-r4
@gowth4m
gowth4m / Image_wait_CLI.txt
Created June 24, 2020 03:01
[ec2-user]$ anchore-cli image wait openjdk:8-jre-alpine
Image Digest: sha256:b2ad93b079b1495488cc01375de799c402d45086015a120c105ea00e1be0fd52
Parent Digest: sha256:f362b165b870ef129cbe730f29065ff37399c0aa8bcab3e44b51c302938c9193
Analysis Status: analyzed
Image Type: docker
Analyzed At: 2020-06-24T03:00:23Z
Image ID: f7a292bbb70c4ce57f7704cc03eb09e299de9da19013b084f138154421918cb4
Dockerfile Mode: Guessed
Distro: alpine
Distro Version: 3.9.4
@gowth4m
gowth4m / Image_Add_CLI.txt
Created June 23, 2020 18:01
[ec2-user]$ export ANCHORE_CLI_URL=http://localhost:8228/v1
[ec2-user]$ export ANCHORE_CLI_USER=admin
[ec2-user]$ export ANCHORE_CLI_PASS=foobar
[ec2-user]$ anchore-cli image add openjdk:8-jre-alpine
Image Digest: sha256:b2ad93b079b1495488cc01375de799c402d45086015a120c105ea00e1be0fd52
Parent Digest: sha256:f362b165b870ef129cbe730f29065ff37399c0aa8bcab3e44b51c302938c9193
Analysis Status: not_analyzed
Image Type: docker
Analyzed At: None
Image ID: f7a292bbb70c4ce57f7704cc03eb09e299de9da19013b084f138154421918cb4
@gowth4m
gowth4m / CLI_Status.txt
Created June 23, 2020 17:46
[ec2-user~]$ curl http://localhost:8228/v1
"v1"
[ec2-user~]$ anchore-cli --url http://localhost:8228/v1 --u admin --p foobar system status
Service catalog (anchore-quickstart, http://catalog:8228): up
Service policy_engine (anchore-quickstart, http://policy-engine:8228): up
Service analyzer (anchore-quickstart, http://analyzer:8228): up
Service simplequeue (anchore-quickstart, http://queue:8228): up
Service apiext (anchore-quickstart, http://api:8228): up
@gowth4m
gowth4m / Image_wait.txt
Created June 23, 2020 04:54
[ec2-user~]$ docker-compose exec api anchore-cli image wait docker.io/library/alpine:3.9.2
Image Digest: sha256:d05ecd4520cab5d9e5d877595fb0532aadcd6c90f4bbc837bc11679f704c4c82
Parent Digest: sha256:644fcb1a676b5165371437feaa922943aaf7afcfa8bfee4472f6860aad1ef2a0
Analysis Status: analyzed
Image Type: docker
Analyzed At: 2020-06-23T04:51:09Z
Image ID: 5cb3aa00f89934411ffba5c063a9bc98ace875d8f92e77d0029543d9f2ef4ad0
Dockerfile Mode: Guessed
Distro: alpine
Distro Version: 3.9.2
@gowth4m
gowth4m / Image_add.txt
Created June 23, 2020 04:51
[ec2-user~]$ docker-compose exec api anchore-cli image add docker.io/library/alpine:3.9.2
Image Digest: sha256:d05ecd4520cab5d9e5d877595fb0532aadcd6c90f4bbc837bc11679f704c4c82
Parent Digest: sha256:644fcb1a676b5165371437feaa922943aaf7afcfa8bfee4472f6860aad1ef2a0
Analysis Status: not_analyzed
Image Type: docker
Analyzed At: None
Image ID: 5cb3aa00f89934411ffba5c063a9bc98ace875d8f92e77d0029543d9f2ef4ad0
Dockerfile Mode: None
Distro: None
Distro Version: None
@gowth4m
gowth4m / Verify_status.txt
Created June 22, 2020 17:28
[ec2-user]$ docker-compose exec api anchore-cli system status
Service analyzer (anchore-quickstart, http://analyzer:8228): up
Service simplequeue (anchore-quickstart, http://queue:8228): up
Service policy_engine (anchore-quickstart, http://policy-engine:8228): up
Service apiext (anchore-quickstart, http://api:8228): up
Service catalog (anchore-quickstart, http://catalog:8228): up
Engine DB Version: 0.0.13
Engine Code Version: 0.7.2
@gowth4m
gowth4m / anchore_engine.txt
Created June 22, 2020 17:25
[ec2-user]$ docker-compose up -d
Creating network "ec2-user_default" with the default driver
Creating volume "ec2-user_anchore-db-volume" with default driver
Pulling db (postgres:9)...
9: Pulling from library/postgres
7d2977b12acb: Pull complete
0189767a99c6: Pull complete
2ac96eba8c9d: Pull complete
8b4f0db1ff6e: Pull complete
9e30cfe22768: Pull complete
@gowth4m
gowth4m / anchore-cli.txt
Created June 22, 2020 17:00
[ec2-user]$ anchore-cli
Usage: anchore-cli [OPTIONS] COMMAND [ARGS]...
Options:
--debug Debug output to stderr
--u TEXT Username (or use environment variable ANCHORE_CLI_USER)
--p TEXT Password (or use environment variable ANCHORE_CLI_PASS)
--url TEXT Service URL (or use environment variable
ANCHORE_CLI_URL)
--hub-url TEXT Anchore Hub URL (or use environment variable
@gowth4m
gowth4m / Trivy_Output.txt
Last active May 19, 2020 10:05
root@kali:~# docker run --rm -v $(pwd):/root/.cache/ aquasec/trivy alpine:3.9.2
Unable to find image 'aquasec/trivy:latest' locally
latest: Pulling from aquasec/trivy
cbdbe7a5bc2a: Pull complete
ffd12ad1c19d: Pull complete
4045b0e44362: Pull complete
a14ab5203caa: Pull complete
Digest: sha256:23859fa9dcaaaa08deab48f0db2d643339e6e5a1060536f9a17bc6eb0517d332
Status: Downloaded newer image for aquasec/trivy:latest
2020-05-19T10:04:47.355Z INFO Detecting Alpine vulnerabilities...