Container discovery is an automated scan that allows mapping running or stopped containers on a host previously integrated with the platform. This type of discovery aims to detect services, credentials, groups, and other artifacts related to containers in a secure and controlled manner.
Features
- Discovery of containers running on registered Docker hosts.
- Identification of credentials and groups linked to containers.
- Support for searching only for running containers, reducing the scope as needed.
- Use of scan plugins, such as the Windows or SQL Server plugin, with custom port configuration.
- Definition of execution windows and intervals between scans.
- Application of stored credentials or alternative credential pools during connection.
Applicability
Container discovery is recommended for organizations that use container-based infrastructure, especially for:
- Maintaining an automatically updated asset inventory.
- Integrating container data into the platform's knowledge base.
- Auditing credentials and accesses used in containerized environments.
- Increasing visibility over temporary and dynamic services hosted in containers.
Use Cases
- Discovering containers running on multiple Docker hosts.
- Verifying that credentials used in containers are stored correctly on the platform.
- Auditing critical services running in containers through custom plugins.
- Mapping groups or accounts associated with containers as part of compliance and audit processes.