docker
Backup Docker volumes locally or to any S3, WebDAV, Azure Blob Storage, Dropbox, Google Drive or SSH compatible storage.
The offen/docker-volume-backup Docker image can be used as a lightweight (below 15MB) companion container to an existing Docker setup. It handles recurring or one-off backups of Docker volumes to a local directory, any S3, WebDAV, Azure Blob Storage, Dropbox, Google Drive or SSH compatible storage (or any combination thereof) and rotates away old backups if configured. It also supports encrypting your backups using GPG and sending notifications for (failed) backup runs.
Fast container image distribution plugin with lazy pulling .
Pulling image is one of the time-consuming steps in the container lifecycle. Research shows that time to take for pull operation accounts for 76% of container startup time[FAST '16]. Stargz Snapshotter is an implementation of snapshotter which aims to solve this problem by lazy pulling. Lazy pulling here means a container can run without waiting for the pull completion of the image and necessary chunks of the image are fetched on-demand.
Related contents:
Kubernetes, Docker and Podman Container Management Platform.
Related contents:
Security, visibility, and authorization for AI agents
Leash wraps AI coding agents in containers and monitors their activity. You define policies in Cedar; Leash enforces them instantly.
Authorize and monitor your AI agents with policy enforcement, sandboxed execution, and real-time observability—ensuring they operate safely within your defined boundaries.
Modern Docker Management.
Dockhand is a modern, efficient Docker management application providing real-time container management, Compose stack orchestration, and multi-environment support. All in a lightweight, secure and privacy-focused package.
Related contents:
- Best Self-Hosted Apps of 2025 | The Top New Containers You Should Know @ ServersatHome's YouTube.
- Dockhand Deep Dive: The NEW Docker Management Tool Explained @ DB Tech's YouTube.
- Dockhand: The Easiest Way I’ve Found to Manage and Update Docker Containers @ Lawrence Systems' YouTube.
- Dockhand - The Ultimate Self-Hosted Docker Management Tool @ noted.
Open source and self hostable docker compose editor and configuration tool.
ComposeToolbox is a self-hostable web application that allows users to edit, validate, and get suggestions for your docker-compose.yml files. It has a fully featured code editor as well as a configuration panel that breaks down what exactly the compose file does.
VaultOS is a terminal-based user interface (TUI) for managing "Desktop" Docker containers.
VaultOS is a terminal-based user interface (TUI) for managing "Desktop" Docker containers. It allows you to effortlessly spin up ephemeral or persistent Linux desktop environments (like Alpine XFCE, Ubuntu KDE, etc.) accessible directly via your web browser.
Create DNS records from Docker labels.
Docker DNS Exporter connects to a Docker daemon and periodically checks for containers with labels matching the expected format. Any new records are sent to their configured name server to be served to clients. If a record hasn't been seen for a configurable amount of time, the record gets deleted from the name server it was defined on.
Puts Docker Containers to sleep and wakes them back up when they're needed.
Written in Node.js, this application acts as a HTTP reverse proxy and stops Docker containers which haven't been accessed recently and starts them again when a new request comes in. ContainerNursery also makes sure there are no more active WebSocket connections before stopping the container.
Related contents:
A PostgreSQL Docker container that automatically upgrades your database.
Its whole purpose in life is to automatically detect the version of PostgreSQL used in the existing PostgreSQL data directory, then automatically upgrade it (if needed) to the required version of PostgreSQL using pg_upgrade with the --link option.
🤖 A minimal and customizable Docker image running the Android emulator as a service.
Docker image & resource cleanup helper, on a schedule!
A sleek, lightweight web interface to automatically clean up Docker resources on a schedule.
Terminal-based Docker manager - monitor CPU/memory, view logs, and manage containers.
DockMate is a TUI (Text User Interface) for managing Docker containers directly from your terminal. Think of htop, but for Docker.
Scalable PaaS (automated Docker+nginx) - aka Heroku on Steroids. Scalable, Free and Self-hosted PaaS!.
CapRover is an extremely easy to use app/database deployment & web server manager for your NodeJS, Python, PHP, ASP.NET, Ruby, MySQL, MongoDB, Postgres, WordPress (and etc...) applications!
Open Source Cloud Security Scanner.
An open source, cloud-native security to protect everything from build to runtime.
cnspec assesses your entire infrastructure's security and compliance. It finds vulnerabilities and misconfigurations across public and private cloud environments, Kubernetes clusters, containers, container registries, servers, endpoints, SaaS products, infrastructure as code, APIs, and more.
A powerful policy as code engine, cnspec is built upon Mondoo's security data fabric. It comes configured with default security policies that run right out of the box. It's both fast and simple to use!
Docker Manager is an Android App that allows you to manage your docker installation on remote from your mobile phone!
Related contents:
Backup automation for self-hosters. Powerful backup automation for your remote storage Encrypt, compress, and protect your data with ease.
Zerobyte is a backup automation tool that helps you save your data across multiple storage backends. Built on top of Restic, it provides an modern web interface to schedule, manage, and monitor encrypted backups of your remote storage.
Related contents:
Docker Container Monitoring for Your Terminal.
A powerful TUI for monitoring Docker containers across multiple hosts with real-time CPU, memory, and network metrics. Built with Rust for blazing-fast performance and minimal resource usage.
A Lightweight, Ready-to-Use Web Browsing Environment in Docker with VNC Access.
VNC-Browser is a ready to use, minimal, customizable docker image designed to provide a lightweight and secure environment for browsing the web via VNC.
An archive-less dockerTools.buildImage implementation.
nix2container provides an efficient container development workflow with images built by Nix: it doesn't write tarballs to the Nix store and allows to skip already pushed layers (without having to rebuild them).
Related contents:
Self-hostable Docker Compose stack update manager.
PatchPanda is a self-hostable Docker Compose stack update manager built with .NET 10 and Blazor Server. It scans your existing Docker Compose stacks, monitors GitHub releases for new versions, groups related containers, and helps you review and apply updates while keeping you in control.
Doco-CD stands for Docker Compose Continuous Deployment and is a lightweight GitOps tool that automatically deploys and updates Docker Compose projects and Swarm stacks via webhooks or polling when a change is pushed to a Git repository.
You can think of it as a simple Portainer or ArgoCD alternative for Docker.
Modern Docker Management, Designed for Everyone.
Arcane is designed to be an easy and modern Docker management platform, built with everybody in mind. The goal of Arcane is to be built for and by the community to make sure nobody feels left out or behind with their specific features or processes.
A responsive monitoring platform for Proxmox VE, PBS, and Docker with real-time metrics across nodes and containers.
Real-time monitoring for Proxmox VE, Proxmox Mail Gateway, PBS, and Docker infrastructure with alerts and webhooks.
Monitor your hybrid Proxmox and Docker estate from a single dashboard. Get instant alerts when nodes go down, containers misbehave, backups fail, or storage fills up. Supports email, Discord, Slack, Telegram, and more.
Related contents:
Manage your docker containers and generate a report to share and compare with other self hosters.
Container Census is a lightweight, Go-powered tool that automatically scans your Docker environment across one or many hosts and gives you a clear, historical view of everything running in your stack.
Related contents:
🥑 Language focused docker images, minus the operating system.
"Distroless" images contain only your application and its runtime dependencies. They do not contain package managers, shells or any other programs you would expect to find in a standard Linux distribution.
Related contents:
docker mcp CLI plugin / MCP Gateway.
Related contents:
Docker Proxy Filter (DPF) is a smol, forward proxy for filtering the content and responses of Docker API responses to only those you want to expose.
Unlike the OG docker-socket-proxy and its variants, DPF provides filtering of the response content from the Docker API, rather than disabling/enabling of API endpoints. It does not connect directly to the Docker socket: it designed to be used with another Docker "Socket Proxy" container. Combined with a socket-proxy container that provides granular endpoint access it's possible to expose only information about specific containers in a read-only context.
Related contents:
A CLI tool for backing up Docker instances; Containers, Networks, Images, Volumes.
A lightweight TypeScript CLI for creating and exporting Docker container backups. Captures container configurations, related networks and volumes, and optionally physical volume data.
2048 game with DevOps practices.
A fully containerized and cloud-native implementation of the classic 2048 game with complete CI/CD pipeline, Kubernetes deployment, and Infrastructure as Code.
An application for automating docker containers updates with a web ui.
It's like well-known watchtower, but with a web UI where you can change most of the settings or view the current state of the containers.
Related contents:
Modern Docker container monitoring with auto-restart and alerts .
A comprehensive Docker container monitoring and management platform with real-time monitoring, intelligent auto-restart, multi-channel alerting, and complete event logging.
Related contents:
Ubuntu, Alpine, Arch, and Fedora based Webtop images, Linux in a web browser supporting popular desktop environments.
Related contents:
Docker Registry UI.
A simple, lightweight UI for exploring and managing Docker/OCI container registries.
Multi-Server Fleet Management for Cloudflare Tunnels. Automate Cloudflare Tunnels with Docker Labels.
DockFlare is a powerful, self-hosted ingress controller that simplifies Cloudflare Tunnel and Zero Trust management. It uses Docker labels for automated configuration while providing a robust web UI for manual service definitions and policy overrides.
Terrascan is a static code analyzer for Infrastructure as Code.
Detect compliance and security violations across Infrastructure as Code (IaC) to mitigate risk before provisioning cloud native infrastructure.
IaC for Docker Compose
A thin layer on top of Docker Compose for declarative configurations.
Manage volumes, network, secrets, and even configuration files in a fully declarative way.
Run Windows Apps on Linux with Seamless Integration.
WinBoat is an Electron app which allows you to run Windows apps on Linux using a containerized approach. Windows runs as a VM inside a Docker container, we communicate with it using the WinBoat Guest Server to retrieve data we need from Windows. For compositing applications as native OS-level windows, we use FreeRDP together with Windows's RemoteApp protocol.
Related contents:
Cruise is a powerful, intuitive, and fully-featured TUI (Terminal User Interface) for interacting with Docker. Built with Go and Bubbletea, it offers a visually rich, keyboard-first experience for managing containers, images, volumes, networks, logs and more — all from your terminal.
Search engine for address. Only address.
Addok will index your address data and provide an HTTP API for full text search.
It is extensible with plugins, for example for geocoding CSV files.
Used in production by France administration, with around 26 millions addresses. In those servers, full France data is imported in about 15 min and it scales to around 2000 searches per second.
- Addok @ GitHub.
- Conteneurs Addok pour Docker avec les données de références diffusées par la Base Adresse Nationale :fr: @ GitHub.
Related contents:
Easy Tailscale to WireGuard bridge in a container.
A simple Docker container app which allows connecting existing WireGuard hosts to the Tailscale network, in case the device running WireGuard is locked in and/or does not support Tailscale binaries.
Related contents:
The latest DevOps news, tutorials, and guides. Real Guides for Real Engineers.
Practical DevOps tips, tools, and tutorials. No fluff.
Securing containers, one scan at a time.
Harbor Guard is a comprehensive container security scanning platform that provides an intuitive web interface for managing and visualizing security assessments of Docker images.
A modular backup solution designed for Docker environments, safely handling containerized workloads by stopping and restarting containers during backup operations, ensuring data consistency.
Build single-executable microVMs from Docker images.
Bottlefire turns container images into standalone, zero-dependency Linux executables that bundle Firecracker and launch microVMs automatically.
bake is a Linux CLI tool that can embed microVM resources (firecracker binary, kernel, initrd, boot disk) into itself. It also implements bidirectional communication between VM and host - including networking and directory sharing - entirely in userspace, without requiring root privilege.
TUI viewer for docker-compose.
DCV is a TUI (Terminal User Interface) tool for monitoring Docker containers and Docker Compose applications.
Related contents:
Traefik Landing Page
A simple, modern, and dynamic dashboard for your Traefik services. This application automatically discovers services via the Traefik API and displays them in a clean, responsive grid. It's designed to be run as a lightweight, multi-arch Docker container.
A self-hosted, real-time port monitoring and discovery tool.
By auto-discovering services on your systems, portracker provides a live, accurate map of your network. It helps eliminate manual tracking in spreadsheets and prevents deployment failures caused by port conflicts.
Related contents:
Simple dashboard showing Docker ports with clickable links for multiple hosts.
Dockpeek is a lightweight, self-hosted Docker dashboard that allows you to view and access exposed container ports with a clean, click-to-access interface. It supports both local Docker sockets and remote hosts via socket-proxy, making it easy to manage multiple Docker environments from a single place.
Related contents:
- Deploying Dockpeek with Docker Compose @ Techdox Docs.
- See What Ports Your Containers Use with Dockpeek | Self-Hosted Docker Port Monitor @ Techdox's YouTube.
- Dockpeek: A Docker Port Dashboard for Your Homelab @ DB Tech's YouTube.
- Best Self-Hosted Apps of 2025 | The Top New Containers You Should Know @ ServersatHome's YouTube.
Yet another docker compose manager for homelabs.
Dockman is a tool designed to simplify the management of Docker Compose files, particularly for homelab environments. It provides a straightforward way to edit, track, and back up your compose configurations.
Related contents:
Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source) .
SlimToolkit allows developers to inspect, optimize and debug their containers using its xray, lint, build, debug, run, images, merge, registry, vulnerability (and other) commands. It simplifies and improves your developer experience building, customizing and using containers. It makes your containers better, smaller and more secure while providing advanced visibility and improved usability working with the original and minified containers.
Cloudflare Tunnel & Zero Trust manager.
DockFlare simplifies Cloudflare Tunnel and Zero Trust Access policy management by using Docker labels for automated configuration, while also providing a powerful web UI for manual service definitions and policy overrides. It enables secure, hassle-free public access to both Dockerized and non-Dockerized applications with minimal direct interaction with Cloudflare. Acting as a dynamic, self-hosted ingress controller, DockFlare offers persistent, UI-driven control over access policies centralizing and streamlining your access management.
Build Container Images In Kubernetes.
kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster.
kaniko doesn't depend on a Docker daemon and executes each command within a Dockerfile completely in userspace. This enables building container images in environments that can't easily or securely run a Docker daemon, such as a standard Kubernetes cluster.
Push docker images directly to remote servers without an external registry.
Unregistry is a lightweight container image registry that stores and serves images directly from your Docker daemon's storage.
The included docker pussh command (extra 's' for SSH) lets you push images straight to remote Docker servers over SSH. It transfers only the missing layers, making it fast and efficient.
Self-hosted service monitoring dashboard for Docker containers, with notifications.
Real-time logs, Interactive terminals, Custom alerts/notifications, File system access. All in one UI, for Docker.
A self hosted virtual browser that runs in docker and uses WebRTC.
Neko is a powerful tool that allows you to run a fully-functional browser in a virtual environment, giving you the ability to access the internet securely and privately from anywhere. With Neko, you can browse the web, run applications, and perform other tasks just as you would on a regular browser, all within a secure and isolated environment.
Related contents:
Free labs and playgrounds for learning Kubernetes, Cloud, DevOps and AI.