Simple play icon Course
Skills

Container Infrastructure Analysis with Trivy

by Zach Roof

Want to learn how to find vulnerabilities in docker images? How about preventing these vulnerabilities in the first place? If so, you're in the right place! In this course you will learn Container Infrastructure Analysis with Trivy.

What you'll learn

In this course, we will focus on automating docker image security scans:

  1. use Trivy (and a Github Action) to scan Dockerfiles within Github
  2. use Trivy to uncover a malicious image within a Docker registry
  3. perform an analysis on the malicious image to uncover the source of compromise
When you’re finished with this course, you’ll have the skills and knowledge to detect these techniques: Supply Chain Compromise (T1195), Implant Container Image (T1525).

Course FAQ

What is Trivy?

Trivy is an easy-to-use and comprehensive and open source vulnerability scanner for container images.

What will I learn in this Trivy course?

In this course you will learn how to use Trivy and Github Actions to scan and audit container images for vulnerabilities.

What is a container image?

A container image is an unchangeable, static file that includes executable code so it can run an isolated process on information technology infrastructure.

What are Docker images used for?

Docker images are used to execute code in a Docker container. Docker images act as a set of instructions to build a Docker container, similar to a template.

What is GitHub Actions?

GitHub Actions is a software tool that automates, customizes, and executes your software development workflows right in your repository.

About the author

Zach describes himself as “an ordinary guy who’s extraordinarily curious about technology.” This curiosity has led to roles in Software Development, Application Security, DevOps, and Security Engineering. Currently, Zach is the Lead Security Engineer at Credible where he helps lead the security vision of a highly sensitive Fintech product. Outside of his day job, Zach has spoken at SyntaxCon, created cybersecurity tutorials through Securing The Stack, led an AWS Meetup group, and has provided cy... more

Ready to upskill? Get started