Docker bench
– What is Docker Bench
– Docker Bench Options
InSpec
– What is InSpec
– InSpec Install
– Running Chef InSpec
– InSpec Profile Structure
– InSpec Community Profiles
Anchore
– How does Anchore work
– Ancore Engine
– Installing Anchore Engine
– Using Anchore
Jenkins pipelines
– Continuous integration flow
– Continuous delivery flow
– Continuous deployment flow
– What is Jenkins?
– What is a pipeline?
– Securing Jenkins CI/CD Pipeline with Anchore
Dagda
– What is Dagda?
– Installing and running Dagda
– Dagda database
– Analyzing docker images/containers
– Monitoring running containers
– Getting Docker daemon events
Sysdig Falco
– What is Sisdig?
– What is Falco?
– Falco rules
– Installing Falco
– Running Falco as a daemon
Hands-on Lab:
Docker Bench
InSpec
Anchore
Create a Jenkins pipeline for docker image security scanning with anchore