Flibustier: Why We Built a Container Security Auditor in Pure Bash

"A lightweight, zero-dependency container runtime audit toolkit designed for redteam operations. No Python, no Docker image, no compilation — just scp and run.”

"When you're inside a target network, you don't have time to build a Python virtualenv or pull a 500MB scanner image. You need answers in seconds, with whatever tools are already there."

TL;DR

We built Flibustier — a container runtime security auditor written entirely in Bash. It requires nothing but docker, jq, and standard UNIX utilities. No compilation, no package managers, no bloated dependencies. Just scp it to a compromised node and run it. It outputs findings in terminal, JSON, CSV, Markdown, or SARIF for your GitHub Security tab.

GitHub: github.com/toxy4ny/flibustier