This script attempts to exploit Docker containers for privilege escalation by utilizing Docker images that may allow access to the host filesystem with privileged privileges. It tests a predefined list of Docker images and checks if the system is vulnerable to privilege escalation via chroot.
The script tests the following Docker images for potential privilege escalation: Python, Node, Go, PHP, Ruby, MySQL, Postgres, Redis, and more.
- Check Docker Group: The script checks if the current user is part of the
dockergroup. - Check Local Docker Images: It checks for available Docker images on the system. If no images are found, it attempts to pull the
ubuntuimage. - Privilege Escalation Attempt: For each Docker image in the predefined list, the script checks if it can execute
chrootinside the container with the host's filesystem, potentially escalating privileges. - Execution: If successful, it launches a root shell with access to the host filesystem.
- Docker installed and running.
- User must be a member of the
dockergroup to run the script withoutsudo.
-
Clone the repository:
git clone https:/github.com/4m3rr0r/ZombifyDocker.git
cd ZombifyDocker -
Make the script executable:
chmod +x ZombifyDocker.sh
-
Run the script:
./ZombifyDocker.sh
