Hi!
Defender for Container’s image scan now supports Windows images that are hosted in Azure Container Registry. This feature is free while in preview, and will incur a cost when it becomes generally available.
I previously written an article in French to explain you how you can leverage Microsoft Defender to scan your Linux container images.
Maxime.
Hi!
Since August 2021, it’s now possible to scan the vulnerabilities of your Azure Container Registries protected with an Azure Private Link with « Azure Defender for Container Registries ».
Few months ago, I have written an article (in French) to explain you how you can enable « Azure Defender for Container Registries »: Azure Container Registry | Scanner vos images de containers
Maxime.
Hi!
In this article, I will share a fun fact with you. By default an Azure reader account is allowed to pull all the images from the Azure Container Registry. Next step will be to find sensitive credentials, tokens directly hardcoded in the container images!
Reference: https://docs.microsoft.com/en-us/azure/container-registry/container-registry-roles
Maxime.
