Skip to content
/ imds-spoof Public

imds-spoof is an application designed to mimic the behavior of the AWS Instance Metadata Service (IMDS) for developers during local Docker development

License

Apache-2.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

millermatt/imds-spoof

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

42 Commits
documentation
documentation
 
 
imds-spoof-broker
imds-spoof-broker
 
 
imds-spoof-ctl
imds-spoof-ctl
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
readme.md
readme.md
 
 

Repository files navigation

imds-spoof

Overview

imds-spoof is an application designed to mimic the behavior of the AWS Instance Metadata Service (IMDS) for developers during local development. This application consists of several components working together to provide a local instance metadata service to Docker containers running on developer machines.

The first component is the imds-spoof Docker network. This network is set up with the 169.254.169.0/16 CIDR range to mimic the IP range used by AWS instances for their metadata service.

The second component is an Nginx proxy Docker container named imds-spoof-proxy. This container is connected to the imds-spoof Docker network and receives IMDS requests from the developer's application container. The proxy then forwards these requests to a "broker" web server running on the Docker host.

The third component is the broker web server, named imds-spoof-broker. This server receives proxied traffic from the imds-spoof-proxy and calls an external program to retrieve the necessary IMDS data, which is then returned to the developer's app container. The broker allows imds-spoof to interact with applications on the Docker host.

The fourth component is the imds-spoof-ctl CLI. This component allows developers to start and stop the previous three components easily.

The final component is an application that can return IMDS data based on CLI parameters sent to it from the imds-spoof-broker.

imds-spoof provides a local instance metadata service that can be used for testing and development purposes. By mimicking the behavior of the AWS IMDS, developers can test their applications' interactions with the IMDS without needing to deploy to AWS.

imds-spoof overview

Development status

Working:

  • imds-spoof-ctl
  • imds-spoof Docker network
  • imds-spoof-proxy
  • imds-spoof-broker

Still working on:

  • external app that provides imds data

Install

git clone https://github.com/millermatt/imds-spoof.git

Use

cd imds-spoof/imds-spoof-ctl
./imds-spoof-ctl start

That should start all of the components running. Next you must attach your application's container to the imds-spoof Docker network:

docker network connect imds-spoof <container name>

Now IMDS calls from the AWS SDK in your app should get proxied to the imds-spoof-broker on the Docker host.

Docs

License

This project is licensed under the Apache License, Version 2.0. See the LICENSE file for more information.

About

imds-spoof is an application designed to mimic the behavior of the AWS Instance Metadata Service (IMDS) for developers during local Docker development

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages