Update disgo to 0.3.0
Unclaimed project
Are you a maintainer of Gorsair? Claim this project to take control of your public changelog and roadmap.
Changelog
Gorsair gives root access on remote docker containers that expose their APIs
Update disgo to 0.3.0
This release adds the possibility for gorsair to use the docker socket to gather more information about the daemon, and lets the user run commands on the containers within the exposed docker daemon.
Gorsair is a penetration testing tool for discovering and remotely accessing Docker APIs from vulnerable Docker containers.
Exposing the docker API on the internet is a tremendous risk, as it can let malicious agents get information on all of the other containers, images and system, as well as potentially getting privileged access to the whole system if the image uses the root user.