Vuls on Docker
Check versions
docker run --rm vuls/go-cve-dictionary -v
docker run --rm vuls/goval-dictionary -v
docker run --rm vuls/vuls -v
Update Docker images
docker pull vuls/goval-dictionary
docker pull vuls/vuls
docker pull vuls/go-cve-dictionary
Fetch go-cve-dictionary
# Fetch NVD
VWD="/Volumes/musashi/vols/vuls"
for i in `seq 2002 $(date +"%Y")`; do \
docker run --rm -it \
-v $VWD:/vuls \
-v $VWD/go-cve-dictionary-log:/var/log/vuls \
vuls/go-cve-dictionary fetchnvd -years $i; \
done
Fetch goval-dictionary
# Fetch redhat OVAL
VWD="/Volumes/musashi/vols/vuls"
docker run --rm -it \
-v $VWD:/vuls \
-v $VWD/goval-dictionary-log:/var/log/vuls \
vuls/goval-dictionary fetch-redhat 5 6 7
Configtest
VWD="/Volumes/musashi/vols/vuls"
docker run --rm -it\
-v ~/.ssh:/root/.ssh:ro \
-v $VWD:/vuls \
-v $VWD/vuls-log:/var/log/vuls \
vuls/vuls configtest \
-config=./config.toml
#
Scan
VWD="/Volumes/musashi/vols/vuls"
docker run --rm -it \
-v ~/.ssh:/root/.ssh:ro \
-v $VWD:/vuls \
-v $VWD/vuls-log:/var/log/vuls \
vuls/vuls scan \
-config=./config.toml # path to config.toml in docker
# -e "TZ=Asia/Jakarta" \
# -v /etc/localtime:/etc/localtime:ro \
Report
VWD="/Volumes/musashi/vols/vuls"
docker run --rm -it \
-v ~/.ssh:/root/.ssh:ro \
-v $VWD:/vuls \
-v $VWD/vuls-log:/var/log/vuls \
vuls/vuls report \
-cvedb-path=/vuls/cve.sqlite3 \
-ovaldb-path=/vuls/oval.sqlite3 \
-format-short-text \
-config=./config.toml # path to config.toml in docker
vulsrepo
#
VWD="/Volumes/musashi/vols/vuls"
docker run -dt \
-v VPWD:/vuls \
-p 5111:5111 \
vuls/vulsrepo
#
VWD="/Volumes/musashi/vols/vuls"
docker run -dt \
--name go-cve-dictionary \
-v $VWD:/vuls \
-v $VWD/go-cve-dictionary-log:/var/log/vuls \
--expose 1323 \
-p 1323:1323 \
vuls/go-cve-dictionary server --bind=0.0.0.0
#
VWD="/Volumes/musashi/vols/vuls"
docker run -dt \
--name goval-dictionary \
-v $VWD:/vuls \
-v $VWD/goval-dictionary-log:/var/log/vuls \
--expose 1324 \
-p 1324:1324 \
vuls/goval-dictionary server --bind=0.0.0.0