This two-hour workshop will introduce the student to Docker containers and images. During the workshop, we will create an image that contains the Command Line Interfaces for AWS, Azure, and Google Cloud as our example, but the same process would be followed for any Linux-based command line tool. During the session, we will build, test, and troubleshoot the creation of the Dockerfile and publish the image to Docker Hub. Next, we will set up Github integration so that any changes that we push to the main branch will cause a new image to be built on Ducker Hub. Lastly, we will demonstrate a container image scanning, a feature that requires a paid subscription to Docker.
Learning Objectives:
Learn basic Docker commands
Understand how to create a container image based on a Dockerfile
Learn how to push the container image to a remote repository
Access container images for vulnerabilities
Enable Github integration to automate the build process
Pre-req knowledge: Basic familiarity with Linux commands
System Requirements:
Modern, current web browser
Ubuntu Linux (this may be a cloud/local virtual machine, Ubuntu running as Windows Subsystem For Lunix (WSL))
We will only be using the Linux terminal for this course and a Web Browser
During the workshop, we will create an account on Docker Hub and GitHub (If the student has an existing account, that will be fine as well.)
There is no cost associated with either Docker or Github unless the student wants to choose a premium account, but that is not necessary for the workshop.
About the Creator/Speaker
Kenneth G. Hartman owns Lucid Truth Technologies, a Michigan-based digital private investigation agency and forensic consulting firm specializing in computer, mobile, network, and cloud forensics. Ken’s mission is to “make the truth clear,” and that is reflected in his teaching style. Ken has expertise in cloud technology with a career spanning various architecture, engineering, compliance, and security product management roles. He is an instructor for SEC510: Public Cloud Security: AWS, Azure, & GCP and SEC488: Cloud Security Essentials and a co-author for the SANS 2022 DevSecOps Survey and the SANS 2022 and 2023 Multicloud Survey. Learn more about Ken at https://www.sans.org/profiles/kenneth...
SANS Cloud Security focuses the deep resources of SANS on the growing threats to The Cloud by providing training, GIAC certification, research, and community initiatives to help security professionals build, deploy and manage secure cloud infrastructure, platforms, and applications.
SANS Cloud Security Curriculum: www.sans.org/cloud-security
Twitter: @SANSCloudSec
LinkedIn: / sanscloudsec
Информация по комментариям в разработке