An open API service indexing awesome lists of open source software.

https://github.com/mablanco/docker-loki

Docker image for Loki, a Simple IOC Scanner
https://github.com/mablanco/docker-loki

docker malware-detection security

Last synced: about 1 month ago
JSON representation

Docker image for Loki, a Simple IOC Scanner

Awesome Lists containing this project

README

          

# docker-loki

## Description

Docker image for Loki, a simple IOC and YARA scanner ().

This image is built upon the official Alpine-based Python image.

## How to use this image

### Show inline help

docker run -it --rm mablanco/loki -h

### Create a volume for Loki's signatures

docker volume create loki_signatures

### Scan a directory

docker run -it --rm -v loki_signatures:/app/signature-base -v :/app/scan mablanco/loki -p ./scan

In order to be able to scan different directories in each invocation, it's advisable to use the `--rm` parameter to delete the container after its execution as it's not needed anymore. You can then scan another directory mounting it with the `-v` parameter. Don't forget to also mount the `loki_signatures` volume to prevent Loki from downloading the signatures each time a container is run.

### Update signatures

docker run -it --rm -v loki_signatures:/app/signature-base mablanco/loki --update