From 8bc7e528882e90c16c619580da06ddcf2ab7e4aa Mon Sep 17 00:00:00 2001 From: Relkci <29710634+Relkci@users.noreply.github.com.> Date: Sat, 15 Nov 2025 01:46:20 -0700 Subject: [PATCH 1/2] README Updates --- README.MD | 34 +++++++++++++++++++++++----------- 1 file changed, 23 insertions(+), 11 deletions(-) diff --git a/README.MD b/README.MD index 020f213..af5c71d 100644 --- a/README.MD +++ b/README.MD @@ -6,52 +6,64 @@ They are designed for security assessments and administrative auditing, providin **Warning**: Exposing the Docker Engine API without TLS or authentication is a serious security risk. Use these scripts only against environments you are authorized to assess. +## Install +From pip: +```bash +pip install docker-enumsensitive +``` +From github: +```bash +git cloneh ttps://github.com/DefensiveOrigins/DockerEngineAPI-EnumSensitive.git +``` --- + + ## Scripts -### EnumEnvVars.py` +### docker-enum-envvars / EnumEnvVars.py` Enumerates running and stopped containers, extracts their **environment variables**, and prints them to the console. Can also save the results in structured JSON. -### EnumSecrets.py +### docker-enum-secrets / EnumSecrets.py Enumerates Secrets from Docker Swarm mode, attempting to read their values if specified. Can also save the results in structured JSON. -### EnumImages.py +### docker-enum-images / EnumImages.py Inspects the contents of images for sensitive information such as tokens, keys, etc. ### Usage -##### Environment Variables Enumeration +##### Environment Variables Enumeration ```bash # Local Docker API (default: http://localhost:2375) python EnumEnvVars.py +docker-enum-envvars # Remote engine and save to file python EnumEnvVars.py --url http://docker-host:2375 --out results.json +docker-enum-envvars --url http://docker-host:2375 --out results.json + # Include full /info JSON python EnumEnvVars.py --show-info-json +docker-enum-envvars --show-info-json ``` -##### Secrets Enumeration +##### Secrets Enumeration ```bash # Local secrets enumeration python EnumSecrets.py +docker-enum-secrets # Remote engine, attempt values, save to file python EnumSecrets.py --url http://docker-host:2375 --attempt-values --out secrets.json +docker-enum-secrets --url http://docker-host:2375 --attempt-values --out secrets.json # Include full /info JSON python EnumSecrets.py --show-info-json +docker-enum-secrets --show-info-json ``` - -#### Installation - -```bash -pip install requests alive-progress -``` \ No newline at end of file From da81e1968b740345cccaff54e3ce707402c506a2 Mon Sep 17 00:00:00 2001 From: Relkci <29710634+Relkci@users.noreply.github.com.> Date: Sat, 15 Nov 2025 01:46:58 -0700 Subject: [PATCH 2/2] readme --- README.MD | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.MD b/README.MD index af5c71d..7622e01 100644 --- a/README.MD +++ b/README.MD @@ -13,7 +13,7 @@ pip install docker-enumsensitive ``` From github: ```bash -git cloneh ttps://github.com/DefensiveOrigins/DockerEngineAPI-EnumSensitive.git +git clone https://github.com/DefensiveOrigins/DockerEngineAPI-EnumSensitive.git ``` ---