22 Repos
Tools for executing commands within running container environments.
Distinct from Container Hosting: Distinct from general container hosting: focuses on interactive shell access for administrative tasks.
Explore 22 awesome GitHub repositories matching devops & infrastructure · Container Shell Access. Refine with filters or upvote what's useful.
This project is a Docker educational resource and a collection of practical examples designed for learning containerization technologies. It serves as a guide for understanding container fundamentals, including the creation and management of custom images and the use of registries. The repository provides specialized references for container security hardening, such as managing kernel privileges and implementing supply chain security. It also includes tutorials for multi-container orchestration and a DevOps guide focused on CI/CD automation and image optimization. The material covers a broad
Enables interactive shell access within running container environments for administrative tasks.
This is a machine learning educational repository consisting of a collection of notebooks and code examples. It provides practical implementations of diverse machine learning algorithms and workflows, ranging from traditional scientific computing to deep learning. The project features specific implementations of Scikit-Learn models, such as decision trees, random forests, and support vector machines, as well as TensorFlow examples for building neural networks, convolutional layers, and recurrent architectures. It also includes tutorials on reinforcement learning development and the creation o
Provides interactive shell access to running containers for administrative tasks and version comparisons.
Vulhub is a collection of pre-configured, containerized applications designed to serve as a standardized platform for security research, vulnerability testing, and educational exploitation exercises. It functions as an orchestration framework that enables users to deploy isolated software environments for the purpose of practicing penetration testing and analyzing common security flaws in a controlled setting. The project utilizes an infrastructure-as-code pattern to define complex, multi-service software stacks, ensuring that testing targets remain consistent and reproducible. By leveraging
Enables interactive shell access to container environments for deep analysis and configuration adjustments.
This project provides a full-stack, containerized mail server platform designed for self-hosting. It functions as a complete mail transfer agent that bundles essential services—including SMTP, IMAP, and POP3—into a unified environment. By leveraging container orchestration, it enables the deployment of private email infrastructure that handles message transport, delivery, and user management within a single, manageable service. The platform distinguishes itself through deep integration with container runtimes and robust configuration flexibility. It supports granular customization via configu
Provides a command-line interface inside the container for manual inspection and administration.
Nomad is a distributed workload orchestrator and infrastructure automation platform designed to manage the lifecycle of applications across large-scale, heterogeneous environments. It functions as a multi-cloud orchestration engine, providing a unified control plane to deploy, scale, and govern containers, virtual machines, and legacy applications. By utilizing declarative job specifications, the system ensures infrastructure convergence and maintains the desired state across distributed data centers and geographic regions. The platform distinguishes itself through a flexible, plugin-based ar
Provides interactive shell access to running containers for administrative tasks and debugging.
This project is a comprehensive collection of web development reference guides and technical cheat sheets. It provides a curated set of markdown-based documentation designed to help developers quickly locate syntax patterns and API examples for common web technologies and programming languages. The repository serves as a specialized reference library covering several distinct technical domains. It includes extensive guides for CSS, focusing on selectors, Flexbox, Grid, and responsive layout properties, as well as a DevOps command reference for Docker, Kubernetes, AWS, Ansible, and general she
Details how to execute commands and obtain interactive shell access within running container environments.
Bocker is a minimal container management tool written in Bash that implements core container functionality using Linux namespaces and control groups. It serves as a Linux container manager capable of starting and managing isolated processes and images through low-level kernel features. The project includes an OCI image tool for pulling, saving, and building container images compatible with industry standards. It further integrates a cgroup resource controller to restrict CPU and memory consumption for isolated processes. The tool covers the full container lifecycle, including process isolati
Provides a mechanism to execute commands and gain interactive shell access within active containers.
Komodo is a remote server orchestrator and container deployment platform. It provides a centralized interface for managing multiple remote hosts through lightweight agents, coordinating Docker Swarm and Kubernetes clusters, and automating software delivery via integrated CI/CD pipelines. The system distinguishes itself with a TypeScript-based automation engine that executes typed scripts against the system API for complex operational workflows. It supports infrastructure-as-code through TOML-based declarative configuration synchronization and provides ephemeral build infrastructure that provi
Provides a browser-based interface to execute commands or attach to the primary process of running containers.
Bottlerocket is a container-optimized operating system and minimal Linux distribution designed specifically for hosting container workloads. It functions as an immutable infrastructure OS, utilizing a read-only root filesystem and atomic partition swapping to ensure consistent and reversible system updates. The system is distinguished by an API-driven host manager that replaces traditional shell-based configuration with a local REST API for administrative tasks. To maintain security and stability, it employs a dual-runtime isolation model that separates workload runtimes from system operation
Provides a restricted administrative container with SSH access for system inspection and root-level tasks.
Phusion/baseimage-docker is a minimal Ubuntu-based Docker base image that includes a proper init system for managing multiple services and processes inside a single container. It provides a lightweight init process that reaps zombie processes, forwards stop signals for graceful shutdown, and supervises daemons through runit, restarting them automatically if they crash. The image includes a preconfigured OpenSSH server restricted to public-key authentication for secure shell access to running containers, along with a cron daemon for scheduling recurring tasks. It supports ordered startup scrip
Provides secure shell access to the container using key-based authentication with password login disabled by default.
dockerlabs is a collection of educational labs and technical tutorials designed to teach the fundamentals of containerization and microservice architecture. It provides instructional material and hands-on exercises covering image optimization, security training, infrastructure setup, and cluster orchestration. The project features specific courses and guides focused on reducing image size through multi-stage builds, securing workloads via vulnerability scanning and encrypted networks, and deploying multi-node clusters with high availability using Swarm orchestration. The materials cover a br
Instructs on connecting local terminals to running containers for real-time administrative command execution.
This is a hands-on lab environment for learning network penetration testing techniques, centered on setting up and attacking a vulnerable Active Directory network. The project provides a structured framework for practicing the full attack chain, from initial reconnaissance and scanning through exploitation, privilege escalation, lateral movement, and credential theft, all within isolated virtual machine labs. The lab environment is designed to simulate real-world attack scenarios, including the ability to compile and execute exploit code directly against targets without relying on Metasploit.
Leverages Metasploit exploit modules to obtain a command shell on a vulnerable target machine.
Kruise ist ein Workload-Management-System für groß angelegte Anwendungen auf Kubernetes. Es bietet ein Framework für fortgeschrittene Orchestrierung, Skalierung und Upgrade-Strategien, um die Stabilität in massiven Deployments zu gewährleisten. Das Projekt zeichnet sich durch die Fähigkeit aus, In-Place-Updates von Container-Images und Ressourcenlimits durchzuführen, ohne Pods löschen und neu erstellen zu müssen. Es enthält einen dedizierten Image-Pre-Puller zur Beschleunigung des Pod-Starts und einen Sidecar-Injector zur dynamischen Verwaltung des Lebenszyklus von Sidecar-Containern. Zusätzlich synchronisiert ein Resource-Distributor ConfigMaps und Secrets über mehrere Namespaces hinweg für clusterweite Konsistenz. Das System deckt ein breites Spektrum an Funktionsbereichen ab, darunter topologiebewusstes Pod-Scheduling, Canary-Rollouts mit partitionsbasierter Fortschrittskontrolle und Multi-Domain-Workload-Autoscaling. Es implementiert zudem Hochverfügbarkeitsschutzmaßnahmen wie Application Disruption Limits, Graceful Traffic Draining und Schutz vor kaskadierenden Löschvorgängen. Operative Sichtbarkeit wird durch den Export von Ressourcenmetriken, die Überwachung von Rollout-Deadlines und strukturierte Log-Ausgabe gewährleistet.
Provides an interactive terminal session within specific containers for administrative shell access and debugging.
This project is a wireless hotspot management interface for Debian devices. It provides a web-based controller for managing wireless access points, wireless repeaters, VPN gateways, and DNS ad-blocking filters. The system includes a captive portal framework to intercept network traffic via customizable splash pages and a VPN controller that supports WireGuard and OpenVPN with kill-switch functionality. It further differentiates itself with a DNS ad-blocking filter using curated blacklists and the ability to operate in multiple network modes, including bridged access point and wireless repeate
Provides interactive bash shell access within the running container for manual system administration.
Unregistry is a decentralized container cluster orchestrator and Docker Compose manager. It allows for the deployment and scaling of containerized services across multiple remote hosts without the need for a centralized control plane. The project distinguishes itself by providing a registry-less deployment model, using SSH to transfer container image layers directly to remote servers. This capability enables deployments to air-gapped or private networks by bypassing external image registries entirely. The system covers a broad range of operational capabilities, including overlay mesh network
Provides SSH access to running containers and host machines for native troubleshooting and analysis.
jx ist eine GitOps-Bereitstellungsplattform und ein Kubernetes CI/CD-Orchestrator, der für die Automatisierung des Erstellens und Bereitstellens von Anwendungen entwickelt wurde. Er fungiert als Cloud-Native-Pipeline-Manager, der containerbasierte Build- und Bereitstellungssequenzen unter Verwendung eines Katalogs wiederverwendbarer Aufgaben ausführt. Das Projekt zeichnet sich durch die automatisierte Orchestrierung von Vorschauumgebungen aus, die basierend auf Pull-Request-Aktivitäten erstellt und zerstört werden, um eine Validierung vor dem Zusammenführen zu ermöglichen. Es verwendet ein GitOps-basiertes Statussynchronisationsmodell, um den gewünschten Zustand von Clustern durch Abfragen von Git-Repositories und Anwenden verifizierter Konfigurationsaktualisierungen aufrechtzuerhalten. Das System deckt ein breites Spektrum an Funktionen ab, einschließlich der Verwaltung von Helm-Chart-Bereitstellungen, Multi-Cluster-Orchestrierung und der Integration externer Secret-Stores. Es bietet zudem Tools zur Entwicklerproduktivität für das inkrementelle Neuerstellen von Anwendungen und die Synchronisation von Code zwischen lokal und Pod. Die Installation wird über Git-Operator-Bereitstellung und Bootstrapping von Cluster-Jobs verwaltet, um die Konsistenz der Tools zu gewährleisten.
Opens an interactive terminal inside a paused pipeline container for real-time debugging and file inspection.
Devilbox ist eine containerisierte Entwicklungsumgebung, die eine reproduzierbare Suite von Webservern, Datenbanken und Sprach-Runtimes bereitstellt, die über eine einheitliche Konfiguration verwaltet werden. Es fungiert als Docker-basierter lokaler Entwicklungs-Stack für LAMP- und MEAN-Stacks sowie als Manager für den Wechsel zwischen verschiedenen Versionen dieser Dienste, um spezifische Projektanforderungen zu erfüllen. Das System zeichnet sich durch die Automatisierung der lokalen Netzwerk-Orchestrierung aus. Es enthält einen Docker-basierten Virtual-Host-Manager, der lokale Verzeichnisse automatisch auf benutzerdefinierte Domains abbildet, sowie einen lokalen DNS- und SSL-Orchestrator, der die interne Domainauflösung übernimmt und vertrauenswürdige Zertifikate für die HTTPS-Entwicklung generiert. Das Projekt deckt ein breites Spektrum an Funktionen ab, einschließlich Datenbank- und Dienstverwaltung über Weboberflächen, Sprach-Runtime-Versioning und Multi-Projekt-Hosting. Es bietet zudem Tools zum Abfangen ausgehender E-Mails, zur Überwachung des Dienststatus über ein Dashboard und zur Ausführung von Entwicklungstoolchains direkt innerhalb von Containern.
Provides an interactive command-line interface inside active application containers for direct system interaction.
Lando is a Docker development environment manager and local development orchestrator used to create isolated application stacks. It functions as a web development stack provisioner that coordinates web servers, databases, and runtimes to ensure consistent environment parity across different operating systems. The project distinguishes itself through recipe-based environment bootstrapping for common stacks such as LAMP, LEMP, and MEAN, as well as dedicated provisioning for CMS platforms like WordPress, Drupal, and Joomla. It further differentiates its capabilities by acting as a remote hosting
Provides an interactive shell on specific services to run commands directly inside the container.
dnmp ist eine containerisierte Web-Entwicklungsumgebung, die einen vollständigen LNMP-Stack bestehend aus Nginx, MySQL, PHP und Redis bereitstellt. Es dient als Managementsystem zur Koordinierung von Webserver-Routing, Sprach-Runtime-Versionen, Datenbankverwaltung und SSL-Zertifikatsbereitstellung innerhalb von Docker-Containern. Das Projekt zeichnet sich durch einen umfassenden PHP-Runtime-Manager aus, der den Wechsel zwischen mehreren Sprachversionen und die Verwaltung von Erweiterungen in isolierten Umgebungen ermöglicht. Es enthält einen automatisierten SSL-Zertifikatsmanager, der Webroot-Validierung zur Bereitstellung und Erneuerung von Zertifikaten nutzt, sowie einen Nginx-Virtual-Host-Manager für das Mapping mehrerer benutzerdefinierter Domains auf einen einzelnen Server. Der Funktionsumfang erstreckt sich auf fortgeschrittene Datenbankverwaltung, einschließlich Schemavergleich, Klonen und Analyse von Slow-Query-Logs. Zudem bietet es Observability-Tools für PHP-Performance-Profiling, Visualisierung von Methoden-Callgraphs und Auditierung der Abfrageleistung. Zusätzliche Dienstprogramme decken Web-Traffic-Verschlüsselung via HTTP/2, host-gemapptes Shell-Aliasing für die CLI-Ausführung und Webhook-basiertes Code-Deployment ab.
Provides a capability to enter container environments from the host to perform administrative tasks.
Dockly ist eine Terminal-Benutzeroberfläche zur Verwaltung von Docker-Containern und -Diensten über ein interaktives Menü. Sie fungiert als Log-Streamer, Swarm-Orchestrierungstool und Client zur Verwaltung externer Container-Umgebungen. Das Projekt ermöglicht es Benutzern, sich über Sockets oder Netzwerkports mit Remote-Docker-Daemons zu verbinden. Es beinhaltet die Möglichkeit, zwischen lokalem Container-Modus und Swarm-Cluster-Modus umzuschalten, um Dienste über mehrere Knoten hinweg zu überwachen und zu steuern. Das Tool bietet Echtzeit-Log-Streaming in einer scrollbaren Schnittstelle und unterstützt das Starten interaktiver Shell-Sitzungen direkt in laufenden Containern. Es enthält zudem Ressourcenfilterung, um Container nach Name oder Status zu finden, sowie allgemeine Lebenszyklusverwaltung für Container und Images.
Launches direct bash sessions into running containers for real-time interaction without manual ID copying.