Find binary files not installed through package manager
- go version >= 1.12
- docker version >= 19
Build
$ make buildOnce the build is complete, you can run bindfinder by running:
$ ./binfinder --images <comma separated list of image> --output data --top 20
The output will be diff files per image, top flag(default 0) if value greater than 0 pulls the popular N images to run binfinder upon.
To run analysis on diff files created after finding diffs, you can run analysis to get count per diff across all json files:
$ ./binfinder --analyze --output data
The output will be analysis.csv file.
To run binfinder on registry pass --registry host flag to CLI
$ ./binfinder --top=10 --registry=http://localhost:5000 --output data
CLI will pull images from repositry and check for binary diffs.
To run binfinder on DTR registry pass --registry={HOSTNAME} --dtr --user={USER} --password={PASSWORD} flag to CLI
$ ./binfinder --top=10 --registry=https://vm01-7b86bb7b.westeurope.cloudapp.azure.com:8443 --dtr --user={user} --password={password} --output data
CLI will pull images from DTR and check for binary diffs.
- Binfinder requires shell files
alpine.sh,ubuntu.sh,centos.sh, andcentos_get_all_pkg.shfiles to work, these shell files must be present in the directory from where the command is to be executed. - To improve performance pull the docker image prior to running binfinder.
- Busybox based images are not supported at this time.