Tutorial4 min read

How to Find Exposed Docker Daemon APIs

Locate Docker daemons with unauthenticated API access — a critical security risk.

1

Search for Docker API (HTTP)

Docker daemon API on port 2375 (unencrypted) — the most dangerous misconfiguration.

port:2375 product:docker

An exposed Docker API = full root access on the host.

2

Search for Docker API (HTTPS)

Port 2376 is the TLS-encrypted Docker daemon port.

port:2376 product:docker

3

Find by country

Focus on a specific region.

port:2375 product:docker country:US

Remediation & Hardening

Never expose Docker daemon on 0.0.0.0 — bind to unix socket or localhost only
If remote access is needed, use TLS mutual authentication (--tlsverify)
Use Docker contexts instead of exposing the daemon directly
Consider using Portainer or Docker Swarm with proper auth instead
Monitor for unauthorized container creation

Try It Now

Search for Docker API across 85M+ indexed hosts — free, no registration required.

Search Docker API

More How-To Guides

How to Find Exposed Redis Servers How to Find Exposed MongoDB Databases How to Find Exposed Elasticsearch Clusters How to Find Exposed Jenkins Servers How to Find Exposed RDP Servers How to Find Exposed MySQL Databases How to Find Exposed Kubernetes Clusters