amicontained is a container introspection tool that detects the container runtime in use and enumerates available container features and security configurations.
Container introspection tool. Find out what container runtime is being used as well as features available.
This tool is primarily used by container security professionals and system administrators to identify the container runtime environment and assess security features such as namespaces, AppArmor profiles, capabilities, and seccomp filters. It helps in auditing container security posture and automating security checks within containerized environments.
amicontained requires running inside a container or environment where it can access container runtime information. Debug logging can be enabled with the -d flag for troubleshooting. Users should ensure they have appropriate permissions to query container runtime details and security profiles.
Download pre-built binaries from the Releases page: https://github.com/genuinetools/amicontained/releases
Alternatively, install via Go with the command: go get github.com/genuinetools/amicontainedamicontained -h
Displays help information and usage instructions for amicontained.
amicontained version
Shows the version information of the amicontained tool.
docker run --rm -it r.j3ss.co/amicontained
Runs amicontained inside a Docker container to detect runtime and container security features.
docker run --rm -it --pid host r.j3ss.co/amicontained
Runs amicontained with host PID namespace to show differences in namespace usage.
docker run --rm -it --security-opt "apparmor=unconfined" r.j3ss.co/amicontained
Runs amicontained with AppArmor unconfined security option to observe changes in AppArmor profile.