Mondoo Cloud-Native Security
Usage
Quick Start
Install mondoo
:
Workstation
export MONDOO_REGISTRATION_TOKEN='changeme'
curl -sSL http://mondoo.io/download.sh | bash
Service
export MONDOO_REGISTRATION_TOKEN='changeme'
curl -sSL http://mondoo.io/install.sh | bash
For other installation methods, have a look at our documentation.
Run a scan:
# scan a docker image from remote registry
mondoo scan -t docker://centos:7
# scan docker container (get ids from docker ps)
mondoo scan -t docker://00fa961d6b6a
# scan a ssh instance
mondoo scan -t ssh://[email protected]
Examples
AWS
Example | Phase | Description |
---|---|---|
aws-ami-packer-hcl | Build | Build & Scan AMI with Packer and Mondoo for AWS (hcl) |
aws-ami-packer-json | Build | Build & Scan AMI with Packer and Mondoo for AWS (json) |
aws-ec2-ansible | Deploy, Operate | Secure EC2 instance with Ansible and scan with Mondoo |
aws-ec2-instance-connect | Operate | Assess state of individual instances with EC2 Instance Connect |
aws-mondoo-scan-via-terraform | Deploy | Launch & Scan instance on AWS |
Digital Ocean
Example | Phase | Description |
---|---|---|
digitalocean-image-packer | Build | Build & Scan image on Digitalocean |
digitalocean-mondoo-scan-via-terraform | Deploy | Launch & Scan instance on Digitalocean |
Mondoo Client
Example | Phase | Description |
---|---|---|
mondoo-deploy-ansible | Deploy | Ansible Playbook to deploy Mondoo Client |
mondoo-deploy-chef | Deploy | Chef Cookbook to deploy Mondoo Client |
mondoo-trial-vagrant | Code | Spin-up Mondoo Client in Vagrant |
mql-policies | Build, Deploy | Write a custom policy and assess the state |
Mondoo Scripts
- install.sh - Mondoo Agent Bash Installer for Servers
- download.sh - Mondoo Agent Bash Downloader for Workstation
- Dockerfile - Build script for official Mondoo container
Docker Containers
Installation Packages