How to Scan your Images & Registries
      Back to home
      1. RapidFort SASM Platform Documentation
      2. Quick Start Guide
      3. How to Scan your Images & Registries

      Scan a single Image using rfScan

      Step 1: Log Into RapidFort

      First, run rflogin to log into RapidFort. Enter your password if prompted.

      rflogin <your-email-address>

      Step 2: Scan the MySQL Docker Image

      Run rfscan to scan the MySQL image. Note that rfscan will automatically try to pull the image if it does not exist locally.

      rfscan docker.io/mysql:latest

      If you encounter issues, please try pulling the MySQL image before running rfscan:

      $ docker pull docker.io/mysql:latest
      $ rfscan docker.io/mysql:latest

      Step 3: View Scan Reports

      By default, rfscan will save scan reports in ~/rapidfort/reports/<timestamp>.

      Since we scanned one image in this tutorial, we expect the following reports:

          1. Scan Summary

          2. SBOM Report

          3. Vulnerabilities Report

          4. Estimates Report

          5. Images and Images Scanned Reports


      Your scan summary report may differ slightly from the example.

      SCAN SUMMARY
      -------------------------------------------------------------------------------
      Total # of Images Scanned:                  1
      Total Attack Surface:                       509.3 MB
      Total # of Packages:                        134
      Total # of Vulnerabilities:                 150
          POC:                                    4
          Critical:                               9
          High:                                   66
          Medium:                                 55
          Low:                                    19
      Total # of Vulnerabilities with Patches:    0
      -------------------------------------------------------------------------------

      IMAGE DETAILS
      -------------------------------------------------------------------------------
      Image             Attack Surface    Hardened Estimate   Vulnerabilities   Hardened Estimate 
      mysql:latest      509.3 MB          ~43.1 MB            150   (POC: 4)    ~24               
      -------------------------------------------------------------------------------

      POC ATTACK RISK SUMMARY
      --------------------------------------------------------------------------------
      POC Published
          Severity: Critical
              No vulnerabilities found
          Severity: High
              CVE-2019-3843         mysql:latest
              CVE-2019-3844         mysql:latest
      Rapid Risk Score >= 70.0%
          Severity: Critical
              CVE-2019-9893         mysql:latest
              CVE-2013-4441         mysql:latest
              CVE-2021-35942        mysql:latest
          Severity: High
              CVE-2019-3843         mysql:latest
              CVE-2021-39537        mysql:latest
              CVE-2019-3844         mysql:latest
              CVE-2020-6096         mysql:latest
      --------------------------------------------------------------------------------
      You may also view the image and reports by visiting the RapidFort UI:
      https://frontrow.rapidfort.com ( SaaS)
      https://<rapidfort_ip address> (On-Premises)