Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1941+ Articles
150+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
All tags
29 articles

#Docker

All CosmicBytez Labs articles tagged #Docker, across news, security advisories, how-to guides, and projects.

  • SecurityJul 13, 2026

    CVE-2026-56260: Crawl4AI Arbitrary File Write in Docker API

    A critical CVSS 9.1 vulnerability in Crawl4AI before 0.8.7 allows attackers to write arbitrary files anywhere on the host filesystem via the Docker API's /screenshot and /pdf endpoints — patch immediately.

  • SecurityJul 11, 2026

    CVE-2026-55229: Gotenberg SSRF via LibreOffice Bypasses Built-in Protections

    A server-side request forgery vulnerability in Gotenberg's LibreOffice conversion endpoint allows crafted documents to silently probe internal network...

  • NewsJul 10, 2026

    Hackers Exploit Critical Auth Bypass in Official Gitea Docker Image

    Attackers are actively exploiting a critical authentication bypass in the official Gitea Docker image, allowing unauthenticated users to impersonate any...

  • ProjectJul 8, 2026

    Gophish Phishing Simulation Lab: Security Awareness Testing in Docker

    Deploy a self-hosted phishing simulation platform using Gophish in Docker. Build real-world phishing campaigns, track user engagement, and run security...

  • SecurityJul 4, 2026

    CVE-2026-20896: Gitea Docker Image Authentication Bypass

    All official Gitea Docker images through v1.26.2 ship with a wildcard trusted proxy setting that lets any unauthenticated attacker impersonate any user...

  • ProjectJul 1, 2026

    OWASP DefectDojo: Self-Hosted Vulnerability Management Platform

    Aggregate, deduplicate, and track security findings from 100+ scanners in a unified dashboard. Build a production-grade vulnerability management pipeline...

  • ProjectJun 24, 2026

    OpenCTI: Building a Cyber Threat Intelligence Platform in Your Homelab

    Deploy OpenCTI to aggregate, correlate, and visualize threat intelligence from MISP, NVD, AlienVault OTX, and Shodan — all in a self-hosted Docker stack.

  • ProjectJun 17, 2026

    Building a SOAR Platform with Shuffle in Your Homelab

    Deploy Shuffle, the open-source SOAR platform, to automate security workflows and orchestrate your homelab tools — from Wazuh alerts to enrichment lookups...

  • HOWTOJun 15, 2026

    Docker Security Hardening: Locking Down Container Environments

    A practical, step-by-step guide to hardening Docker deployments — from non-root users and read-only filesystems to capability drops, resource limits, and...

  • SecurityJun 4, 2026

    CVE-2026-36576: Critical OS Command Injection in docker-wkhtmltopdf-aas

    A CVSS 9.8 OS command injection vulnerability in openlabs docker-wkhtmltopdf-aas allows unauthenticated remote code execution via a crafted POST request to…

  • ProjectJun 3, 2026

    Building a Wazuh XDR + SIEM Homelab

    Deploy a full Wazuh stack in Docker to gain host-based intrusion detection, file integrity monitoring, vulnerability scanning, and active response across your…

  • NewsMay 27, 2026

    Open Source DockSec Uses AI to Cut Through Vulnerability

    DockSec, an OWASP incubator project, combines multiple container security scanners with AI-generated plain-English remediation guidance and exact Dockerfile.

  • ProjectMay 27, 2026

    Runtime Security Monitoring with Falco: Detect Container

    Deploy Falco on a Docker host to monitor container syscalls at the kernel level, write custom homelab detection rules, and route real-time alerts through.

  • ProjectMay 20, 2026

    Pi-hole v6 + Unbound: Network-Wide DNS Sinkhole with Recursive Resolution

    Deploy Pi-hole v6 as a network-wide DNS sinkhole backed by Unbound as a self-hosted recursive resolver — eliminating ads, trackers, and malware domains...

  • ProjectMay 13, 2026

    Build a Production Monitoring Stack with Prometheus and Grafana

    Deploy a full observability stack — Prometheus metrics collection, Grafana dashboards, AlertManager notifications, and three exporters — all containerized...

  • ProjectApr 29, 2026

    Building a Production-Ready Reverse Proxy with Traefik v3

    Deploy Traefik v3 as a Docker-native reverse proxy with automatic Let's Encrypt TLS, label-based routing, and security middleware — no more port juggling...

  • HOWTOApr 27, 2026

    OpenVAS / Greenbone: Open-Source Vulnerability Scanning

    Deploy Greenbone Community Edition to run authenticated vulnerability scans, configure scan targets, and generate actionable remediation reports for your...

  • NewsApr 23, 2026

    Malicious KICS Docker Images and VS Code Extensions Hit

    Threat actors hijacked the official checkmarx/kics Docker Hub repository by overwriting existing image tags — including v2.1.20 and alpine variants — and...

  • ProjectApr 22, 2026

    Self-Hosted Password Manager with Vaultwarden

    Deploy a fully self-hosted, Bitwarden-compatible password manager using Vaultwarden on Docker with Caddy reverse proxy, automatic TLS, WebSocket...

  • HOWTOMar 27, 2026

    Container Security Scanning with Trivy: Images, IaC, and CI/CD

    Learn how to use Trivy to scan container images, Dockerfiles, Kubernetes manifests, and Terraform for vulnerabilities and misconfigurations — then...

  • ProjectMar 26, 2026

    Keycloak SSO: Self-Hosted Identity Provider for Your Homelab

    Deploy Keycloak with Docker Compose and PostgreSQL to build a centralised single sign-on platform for your homelab services, with OIDC integration for...

  • NewsMar 23, 2026

    Trivy Hack Spreads Infostealer via Docker, Triggers Worm

    The Trivy supply chain attack has expanded dramatically beyond GitHub Actions: malicious Docker Hub images (versions 0.69.4–0.69.6) carry an infostealer,...

  • HOWTOFeb 8, 2026

    Multi-Stack Docker Infrastructure with Traefik and Authentik

    Deploy a production-grade Docker infrastructure with Traefik reverse proxy, Authentik single sign-on, automated TLS certificates, and multi-network...

  • HOWTOFeb 3, 2026

    Business Central Docker Containers: Development Environment

    Deploy Microsoft Dynamics 365 Business Central in Docker containers for development, testing, and demonstration. Covers container setup, management, and...

  • HOWTOFeb 3, 2026

    Docker Windows Containers: Native Engine Setup Guide

    Deploy Docker Engine natively on Windows without Docker Desktop. Covers installation, Windows container mode, lifecycle management, and troubleshooting.

  • ProjectFeb 3, 2026

    Homelab Media Server with Full ARR Stack

    Deploy a complete self-hosted media automation system with Plex, Sonarr, Radarr, Prowlarr, and more. Includes Traefik reverse proxy, Authentik SSO, and...

  • ProjectFeb 3, 2026

    Kubernetes Homelab Cluster with K3s

    Build a production-grade K3s cluster on Proxmox/bare metal with Longhorn storage, Traefik ingress, cert-manager, and ArgoCD for GitOps.

  • HOWTOJan 25, 2026

    Docker Security Fundamentals: Protecting Your Containers

    Learn essential Docker security practices including image scanning, runtime protection, network isolation, and secrets management for production environments.

  • HOWTOJan 10, 2026

    Self-Hosting a Password Manager: Vaultwarden Setup Guide

    Deploy your own password manager with Vaultwarden (Bitwarden-compatible). Includes secure configuration, SSL setup, and backup procedures.