https://github.com/mablanco/docker-loki
Docker image for Loki, a Simple IOC Scanner
https://github.com/mablanco/docker-loki
docker malware-detection security
Last synced: about 1 month ago
JSON representation
Docker image for Loki, a Simple IOC Scanner
- Host: GitHub
- URL: https://github.com/mablanco/docker-loki
- Owner: mablanco
- License: gpl-3.0
- Created: 2019-09-05T08:34:55.000Z (almost 7 years ago)
- Default Branch: main
- Last Pushed: 2024-10-27T11:37:22.000Z (over 1 year ago)
- Last Synced: 2026-04-30T00:38:39.123Z (2 months ago)
- Topics: docker, malware-detection, security
- Language: Dockerfile
- Homepage:
- Size: 49.8 KB
- Stars: 4
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# docker-loki
## Description
Docker image for Loki, a simple IOC and YARA scanner ().
This image is built upon the official Alpine-based Python image.
## How to use this image
### Show inline help
docker run -it --rm mablanco/loki -h
### Create a volume for Loki's signatures
docker volume create loki_signatures
### Scan a directory
docker run -it --rm -v loki_signatures:/app/signature-base -v :/app/scan mablanco/loki -p ./scan
In order to be able to scan different directories in each invocation, it's advisable to use the `--rm` parameter to delete the container after its execution as it's not needed anymore. You can then scan another directory mounting it with the `-v` parameter. Don't forget to also mount the `loki_signatures` volume to prevent Loki from downloading the signatures each time a container is run.
### Update signatures
docker run -it --rm -v loki_signatures:/app/signature-base mablanco/loki --update