Exposed Docker API Scanner
Leaving Docker APIs exposed to the internet could lead to some troubles like data loss, cryptomining, botnet and so on.
Short Info
Level
Medium
Type
Single Scan
Can be used by
Asset Owner
Estimated Time
5 sec
Scan only one
Domain, Ipv4
Parent Category
Exposed Docker API Scanner Detail
By default when you install docker on a host, you can access the docker API only from the loopback interface. This is great but apparently for some reasons you might want to expose those APIs in order to use some external tool like Portainer. Portainer is a lightweight docker management UI, you can run it locally attaching it to the docker socket or you can manage the containers hosted to a remote host.
Try it yourself,
control security posture
control security posture