Hamburger Icon
  • Course
    • Libraries: If you want this course, consider one of these libraries.
    • Security

Container Infrastructure Analysis with Trivy

Want to learn how to find vulnerabilities in docker images? How about preventing these vulnerabilities in the first place? If so, you're in the right place! In this course you will learn Container Infrastructure Analysis with Trivy.

Zach Roof - Pluralsight course - Container Infrastructure Analysis with Trivy
by Zach Roof

What you'll learn

In this course, we will focus on automating docker image security scans. First, we will use Trivy (and a Github Action) to scan Dockerfiles within Github. Second, we will use Trivy to uncover a malicious image within a Docker registry. Third, we will perform an analysis on the malicious image to uncover the source of compromise. When you’re finished with this course, you’ll have the skills and knowledge to detect these techniques: Supply Chain Compromise (T1195), Implant Container Image (T1525).

Table of contents

About the author

Zach Roof - Pluralsight course - Container Infrastructure Analysis with Trivy
Zach Roof

Zach’s curiosity has led him to roles in Software Development, DevOps, and Security. By drawing on these fields, Zach’s goal is to empower learners with a unique, cross-discipline skill set.

More Courses by Zach