docker-privesc

Community

Escape Docker containers to seize host root access.

Authoruphiago
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill solves the critical problem of escalating privileges from a compromised Docker container to full root access on the underlying host system, a common requirement in authorized penetration testing and red team engagements where containerized workloads serve as the initial access vector.

Core Features & Use Cases

  • 5 Distinct Escape Techniques: Covers docker group volume mounting, docker socket abuse, privileged container exploitation, cgroup release_agent attacks, and prior privilege escalation forensics.
  • Real-World Validation: Tested against production targets including fitness-chain and gov-finance-portal, with documented results and mitigation guidance.
  • Use Cases: Post-RCE escalation after compromising a container via web exploits or API attacks, red team operations targeting containerized cloud and on-premises infrastructure, and security assessments of Docker deployment configurations.

Quick Start

Use the docker-privesc skill to assess your current Docker container's escape surface and execute the appropriate technique to gain root access to the underlying host system.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: docker-privesc
Download link: https://github.com/uphiago/recon-skills/archive/main.zip#docker-privesc

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.