Mondoo
Docs
Supply Chain

Assess Vagrant Box Security with cnspec

Scan Vagrant virtual machines for security misconfigurations and vulnerabilities using cnspec.

Use cnspec to scan running Vagrant virtual machines for security misconfigurations, CVEs, and policy violations. cnspec connects to Vagrant boxes over SSH using the VM's connection details.

Prerequisites

To scan Vagrant boxes with cnspec, you must have:

Scan a Vagrant box

To scan a running Vagrant box, provide the Vagrant machine name (or ID):

cnspec scan vagrant HOST

For example, to scan the default machine in the current Vagrant project directory:

cnspec scan vagrant default

Explore interactively

To open an interactive cnspec shell connected to a Vagrant box:

cnspec shell vagrant default

Connection options

OptionDescription
HOSTVagrant machine name or ID
--insecure, -kSkip TLS certificate verification

Learn more

Terraform

Scan Terraform configurations for security misconfigurations during development and in CI/CD pipelines.

Elastic Container Registry (ECR)

Scan Amazon Elastic Container Registry images for security vulnerabilities and misconfigurations using cnspec.

On this page

PrerequisitesScan a Vagrant boxExplore interactivelyConnection optionsLearn more