Mondoo Cloud is a native security & vulnerability risk management.
Quick Start
Installing
Workstation
export MONDOO_REGISTRATION_TOKEN=’changeme’
curl -sSL http://mondoo.io/download.sh | bash
Service
export MONDOO_REGISTRATION_TOKEN=’changeme’
curl -sSL http://mondoo.io/install.sh | bash
For other installation methods, have a look at our documentation.
Run a scan:
# scan a docker image from remote registry
mondoo vuln -t docker://centos:7
# scan docker container (get ids from docker ps)
mondoo vuln -t docker://00fa961d6b6a
# scan a ssh instance
mondoo vuln -t ssh://ec2-user@54.76.229.223
Also Read – Ehtools : Penetration Tools That Can Be Explored Easily
Deployment
- ansible – Ansible role for the tool
- chef – Chef cookbook for the tool
- install.sh – The tool Agent Bash Installer for Servers
- download.sh – The tool Agent Bash Downloader for Workstation
- Dockerfile – Build script for official the tool container
Integration
- packer-provisioner – The tool Packer Provisioner
- terraform-provisioner – The tool Terrafrom Provisioner
Examples
- ansible-aws-ec2 – Ansible Playbook to deploy the tool Agents
- chef-aws-ec2 – Chef Wrapper Cookbook to deploy the tool Agents
- cloudinit – Lauch instance on AWS with the tool Agent
- docker – Play with Docker & the tool
- packer-aws – Build & Scan AMI on AWS
- packer-digitalocean – Build & Scan image on Digitalocean
- terraform-aws – Launch & Scan instance on AWS
- terraform-digitalocean – Launch & Scan instance on Digitalocean
- vagrant – Spin-up the tool agents in Vagrant
Docs
