Anchore
Container security and compliance platform for scanning container images and software supply chains
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Comprehensive Docker image security scanning and runtime monitoring
Dagda scans Docker images for known CVEs, vulnerable packages, and malware while monitoring running containers for anomalous behavior, storing results in MongoDB for historical analysis.
Dagda provides a unified platform for securing container workloads. It performs static analysis of Docker images, cross‑referencing installed OS packages and language dependencies against a locally stored database of CVEs, Bugtraq IDs, Red Hat advisories, and known exploits. Integrated with ClamAV, it also detects trojans, viruses, and other malware embedded in images.
Beyond image inspection, Dagda monitors live containers using Falco, capturing Docker daemon events and anomalous system calls in real time. All findings—static and runtime—are persisted in MongoDB, enabling historical queries and trend analysis. The tool supports major Linux base images (Red Hat/CentOS/Fedora, Debian/Ubuntu, OpenSUSE, Alpine) and analyzes dependencies for Java, Python, Node.js, Ruby, PHP, and JavaScript via OWASP Dependency‑Check and Retire.js. Deployment requires Docker, MongoDB, Python 3.8+, and kernel headers for Falco integration, making it suitable for DevOps and security teams seeking comprehensive container security.
When teams consider Dagda, these hosted platforms usually appear on the same shortlist.
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
CI/CD pipeline image validation
Automatically reject Docker images containing known CVEs or malware before deployment.
Production container runtime monitoring
Detect and alert on anomalous system calls in live containers, enabling rapid incident response.
Historical vulnerability audit
Query MongoDB to track vulnerability trends across image versions over time.
Multi‑language dependency risk assessment
Identify outdated libraries in Java, Python, Node.js, Ruby, and PHP components within images.
Dagda imports CVEs, Bugtraq IDs, Red Hat Security Advisories, Red Hat Bug Advisories, and exploits from the Offensive Security database into MongoDB.
Dagda runs as a regular user, but Docker commands may require appropriate permissions; adding the user to the docker group avoids sudo.
Dagda currently supports only Linux‑based container images.
Dagda integrates with Falco, which monitors system calls and Docker daemon events to flag suspicious activity.
Yes, Dagda provides a REST API alongside its CLI for programmatic interaction.
Project at a glance
DormantLast synced 4 days ago
