Dockerfile

FROM python:3.8-alpine as builder

RUN apk add --no-cache \
    linux-headers \
    tcpdump \
    build-base \
    ebtables \
    make \
    git && \
    apk upgrade --no-cache

WORKDIR /kube-hunter
COPY setup.py setup.cfg Makefile ./
RUN make deps

COPY . .
RUN make install

FROM python:3.8-alpine

RUN apk add --no-cache \
    tcpdump \
    ebtables && \
    apk upgrade --no-cache

COPY --from=builder /usr/local/lib/python3.8/site-packages /usr/local/lib/python3.8/site-packages
COPY --from=builder /usr/local/bin/kube-hunter /usr/local/bin/kube-hunter

# Add default plugins: https://github.com/aquasecurity/kube-hunter-plugins 
RUN pip install kube-hunter-arp-spoof>=0.0.3 kube-hunter-dns-spoof>=0.0.3

ENTRYPOINT []

CMD ["kube-hunter", "--pod", "--report", "json", "--dispatch", "http"]