Using dockerspy

DockerSpy searches Docker Hub for publicly accessible container images and analyses their contents to detect exposed secrets, sensitive files, and other security issues. It is useful for identifying leaked credentials or sensitive data that has been accidentally bundled into a public image.

• Searches Docker Hub for images by organisation or user
• Analyses image layers for exposed secrets and sensitive files
• Useful for supply chain and third-party image risk assessment

Prepare the Environment

No setup required. Run from the shell.

Gather Data

Search Docker Hub for an Organisation's Images

dockerspy --org <organisation-name>

Search by Username

dockerspy --user <dockerhub-username>

Output to File

dockerspy --org <organisation-name> > /output/dockerspy-results.txt

Known Issues

TBC

Additional Information

• GitHub Repo