Docker and Container Security

Going beyond the container to secure your application infrastructure

Just as virtualized operating systems revolutionized how we deploy IT infrastructure, virtualized applications in containers have the potential to revolutionize how we deploy web applications. But as with any new technology, rapid adoption can present new security risks and potentially leave your applications open to attack. You need to be able to assess all layers of your new application infrastructure and ensure that your customer and critical data isn’t put at risk.

Secure every layer of your brave new containerized world

From securing container images pre-deployment to scanning production applications using coding best practices, Rapid7 is uniquely positioned to help organizations build out a secure containerized application development program; our products and service offerings enable security teams and application developers to think about containers like attackers do.

Secure the modern applications containers were built for

InsightAppSec is powered by Gartner's top-rated dynamic application security testing technology and is uniquely capable of discovering security flaws in the modern web applications that containers are built for. InsightAppSec provides:

  • Intuitive workflows, a modern UI, and quick deployment designed to get you to your first scan within minutes.
  • The Universal Translator, which provides comprehensive coverage of modern web applications and APIs developed with the latest frameworks.
  • Application portfolios that help you efficiently manage vulnerability scans and results of all your containerized web apps, APIs, and micro services.

Achieve direct visibility across your environment

InsightVM provides direct visibility into the risk posed by container images in your environment, as well as the systems that host them, integrated within one solution at no additional cost. With InsightVM, you can: 

  • Discover Docker containers in your environment and the systems that host them.
  • Scan hosts for vulnerabilities and misconfigurations.
  • Connect to public and private container registries to assess the security of container registries before they're deployed.
  • Correlate image vulnerability assessment with deployed container images to understand the risk posed to your network.
  • Understand the impact of this risk with container Liveboards, live dashboards that are easily queryable and customizable.

To learn more, check out the Rapid7 blog, and if you'd like a preview of additional capabilities on the way, check back on this post.

Monitor your entire Docker container deployment

InsightOps simplifies IT infrastructure monitoring and troubleshooting by centralizing data from containers, hosts, and applications within your network into one secure location. With InsightOps, you can:

  • Centralize docker logs for deployments of all sizes to improve performance and debug issues.
  • Monitor and track critical container events in real time, including container activity alerts for remediation and application logs to optimize your apps.
  • Utilize real time performance monitoring and analytics, such as CPU, memory, and network usage for all running containers.

Get expert help to build your web application security program with Rapid7 Consulting Services

Finally, while there are numerous benefits in containerization, securing containers are just a small piece of a healthy web application security strategy. Rapid7’s Consulting Services professionals have decades of experience building out application security programs and can help you create a long-term road map to ensure your business stays secure as it gets more efficient. Our penetration testers can also ensure that the security controls you’ve put in place to protect your new virtual infrastructure are working properly and keeping the bad guys out.

Resource

Solution Brief: Container Monitoring and Security

The rise of Docker containers has revolutionized application development; learn how InsightVM, InsightAppSec, and InsightOps tackle the new operational and security challenges of containerization.

View now