predictiple
diff --git a/‎.wordlist.txt‎
Lines changed: 1 addition & 0 deletions b/‎.wordlist.txt‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎content/blog/2026/2026-05-31-release-notes-0.77/_index.md‎
Lines changed: 4 additions & 3 deletions b/‎content/blog/2026/2026-05-31-release-notes-0.77/_index.md‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎content/docs/cli/run/_index.md‎
Lines changed: 11 additions & 9 deletions b/‎content/docs/cli/run/_index.md‎
Lines changed: 11 additions & 9 deletions
diff --git a/‎content/docs/deployment/_index.md‎
Lines changed: 5 additions & 3 deletions b/‎content/docs/deployment/_index.md‎
Lines changed: 5 additions & 3 deletions
diff --git a/‎content/docs/deployment/server/docker/_index.md‎
Lines changed: 159 additions & 0 deletions b/‎content/docs/deployment/server/docker/_index.md‎
Lines changed: 159 additions & 0 deletions
diff --git a/‎content/docs/deployment/server/upgrades/_index.md‎
Lines changed: 1 addition & 1 deletion b/‎content/docs/deployment/server/upgrades/_index.md‎
Lines changed: 1 addition & 1 deletion
@@ -1,2 +1,3 @@
 explainability
 abovementioned
+entrypoint
@@ -98,9 +98,10 @@ this release.
   used for more granular role mapping.
 
 - **Velociraptor Docker container.** An officially supported
-  Docker-based container is now available, and a Dockerfile,
-  compose.yaml, and supporting configuration files. This makes it
-  easier to deploy Velociraptor in containerized environments.
+  [Docker-based container](https://github.com/Velocidex/velociraptor/tree/master/Docker)
+  is now available, and a Dockerfile, compose.yaml, and supporting
+  configuration files. This makes it easier to deploy Velociraptor in
+  containerized environments.
 
 ## GUI Improvements
 
 
@@ -1,8 +1,8 @@
 ---
 menutitle: "Run mode"
-title: "Running collections on the command line"
+title: "Run mode syntax"
 date: 2026-06-16
-last_reviewed: 2026-06-17
+last_reviewed: 2026-06-20
 draft: false
 weight: 30
 summary: |
@@ -15,13 +15,15 @@ description: |
   remote clients.
 ---
 
+## Running collections on the command line
+
 Run mode (`-r` or `--run` flag) lets you run any Velociraptor
 collection directly from the command line, whether locally or against
 a remote server and its clients. It provides a simpler and more
 intuitive syntax than the equivalent `artifacts collect` command,
 especially when passing parameters to artifacts.
 
-## Equivalence to artifacts collect
+### Equivalence to artifacts collect
 
 Run mode is a front-end to `artifacts collect`. The following two
 commands are equivalent:
@@ -45,7 +47,7 @@ Because run mode uses `artifacts collect` under the hood, it supports
 all the
 [flags for that command](/docs/cli/commands/artifacts/#-artifacts-collect-).
 
-## Global flags vs artifact parameters
+### Global flags vs artifact parameters
 
 [Global CLI flags](/docs/cli/flags/)
 (such as `--config` or `--api_config`) go **before** the `-r` flag.
@@ -61,7 +63,7 @@ velociraptor -r Windows.Forensics.SRUM -o /tmp/srum_results.zip
 
 Here `-o` maps to the `--output` flag of `artifacts collect`.
 
-## Viewing available artifact parameters
+### Viewing available artifact parameters
 
 Use `-h` after the artifact name to see the artifact's specific
 parameters instead of the CLI help:
@@ -85,7 +87,7 @@ Artifact Parameters:
     Valid values: Y / N
 ```
 
-## Using custom artifact definitions
+### Using custom artifact definitions
 
 You can load custom artifact packs with the `--definitions` flag.
 Place this flag **before** `-r`:
@@ -97,11 +99,11 @@ velociraptor --definitions /path/to/artifacts.zip -r Custom.MyArtifact
 The `--definitions` flag also accepts a ZIP file containing artifact
 definitions.
 
-## Remote collection via the API
+### Remote collection via the API
 
 With an API config file (`--api_config`), run mode works against a
 remote server. You can collect server artifacts or collect client
-artifacts from any client. 
+artifacts from any client.
 
 ###### Example: Collect a server artifact
 
@@ -141,7 +143,7 @@ velociraptor --api_config api.yaml artifacts fetch \
 See the [[ artifacts fetch ]](/docs/cli/commands/artifacts/#-artifacts-fetch-)
 reference for details.
 
-## Detailed walkthrough
+### Detailed walkthrough
 
 For a detailed walkthrough covering local collection, remote
 collection via the API, custom artifact packs, external tool
 
@@ -358,11 +358,13 @@ them the same as you would with data collected from network-connected clients.
 That is, an Instant Velociraptor deployment using only offline collectors
 amounts to a sneakernet Velociraptor deployment!
 
-<!-- ### Remote filesystem access via SSH
+### Collections Over SSH
 
-[](/docs/file_collection/ssh/)
+[Collections Over SSH](/docs/file_collection/ssh/)
 
-### Sneakernet Velociraptor server
+
+
+<!-- ### Sneakernet Velociraptor server
 
 ### Ephemeral clients -->
 
 
@@ -0,0 +1,159 @@
+---
+menutitle: Docker
+title: Docker deployment
+draft: false
+weight: 50
+date: 2026-06-21
+last_reviewed: 2026-06-23
+summary: |
+  Run the Velociraptor server inside a Docker container, using the
+  officially supported image from the GitHub Container Registry.
+description: |
+  Run the Velociraptor server inside a Docker container, using the
+  officially supported image from the GitHub Container Registry.
+---
+
+From [Velociraptor 0.77](/blog/2026/2026-05-31-release-notes-0.77/),
+an officially supported Docker container is available from the
+[GitHub Container Registry](https://ghcr.io/velocidex/velociraptor-server).
+You can use it to run the Velociraptor server in a containerized
+environment without needing to install packages or manage binaries
+directly.
+
+The source files for the container (including the `Dockerfile`,
+`compose.yaml`, entrypoint script, and configuration VQL) live in the
+main Velociraptor repository under the
+[`Docker/`](https://github.com/Velocidex/velociraptor/tree/master/Docker)
+directory. That directory's
+[README](https://github.com/Velocidex/velociraptor/blob/master/Docker/README.md)
+contains the full technical reference and step-by-step instructions.
+
+The CI system builds the container image automatically and publishes
+it whenever changes are merged to the main branch. The
+`ghcr.io/velocidex/velociraptor-server:latest` tag always points to
+the most recent build. Release versions are tagged with their version
+number (for example, `ghcr.io/velocidex/velociraptor-server:0.77`).
+
+You will need:
+
+- Docker (or a compatible container runtime, such as Podman)
+- `docker-compose` (or `docker compose`)
+
+## Deployment scenarios
+
+The container supports two main scenarios depending on whether you
+already have a Velociraptor deployment.
+
+### Fresh deployment
+
+If you don't have an existing Velociraptor server, the container can
+create everything from scratch:
+
+1. Copy the
+   [`compose.yaml`](https://github.com/Velocidex/velociraptor/blob/master/Docker/compose.yaml)
+   and
+   [`.env`](https://github.com/Velocidex/velociraptor/blob/master/Docker/.env)
+   files from the repository's `Docker/` directory into a new project
+   directory.
+2. Adjust the `.env` file if needed (hostname, ports, admin password).
+3. Run `docker-compose up`.
+
+On first startup, the container:
+
+- Generates a new configuration file with self-signed certificates
+- Creates an initial `admin` user with the password from the `.env`
+  file (default: `password`)
+- Starts the Velociraptor frontend on the configured ports
+- Builds client deployment packages (MSI, DEB, RPM)
+
+The container stores the generated configuration file in the `etc/`
+directory and keeps the datastore in the `datastore/` directory. Both
+directories are mounted as volumes, so data persists across
+container restarts.
+
+You can connect to the GUI at `https://localhost:8889/` (or the host
+and port you configured).
+
+### Existing deployment with your own configuration
+
+If you already have a Velociraptor deployment, you can point the
+container at your existing configuration file:
+
+1. Place your existing `server.config.yaml` in the `etc/` directory.
+2. Ensure your `.env` file reflects your server's hostname and ports.
+3. Run `docker-compose up`.
+
+The container detects the existing configuration file and skips the
+generation step, starting the frontend directly. The datastore volume
+gives the container access to your existing data.
+
+## Upgrading
+
+Upgrading a Docker-based deployment is straightforward because all
+persistent data is stored on mounted volumes.
+
+{{% notice info "Keep your configuration file" %}}
+
+Your configuration file contains the cryptographic keys that establish
+trust between the server and its clients. When upgrading, you must
+reuse the same configuration file so that existing clients can
+continue to communicate with the server.
+
+Before upgrading, make a backup copy of your configuration file
+(located in the `etc/` directory). Keep it somewhere safe.
+
+{{% /notice %}}
+
+To upgrade:
+
+1. Pull the latest image:
+   ```bash
+   docker pull ghcr.io/velocidex/velociraptor-server:latest
+   ```
+2. Stop the running container:
+   ```bash
+   docker-compose down
+   ```
+3. Start again with the new image:
+   ```bash
+   docker-compose up
+   ```
+
+The new container runs the latest Velociraptor binary using your
+existing configuration file and datastore. Clients reconnect using
+the same cryptographic keys and continue operating normally.
+
+If you want to pin a specific version, change the image tag in your
+`compose.yaml` from `:latest` to a version tag such as
+`ghcr.io/velocidex/velociraptor-server:0.77`.
+
+## Environment variables
+
+The following environment variables (set in the `.env` file or passed
+directly to the container) control the container's behavior:
+
+| Variable | Default | Description |
+|---|---|---|
+| `VELOCIRAPTOR_HOSTNAME` | `localhost` | Public hostname or IP that clients use to reach the server |
+| `VELOCIRAPTOR_FRONTEND_PORT` | `8000` | Port for client communication |
+| `VELOCIRAPTOR_GUI_PORT` | `8889` | Port for the web GUI |
+| `VELOCIRAPTOR_DATASTORE_PATH` | `/datastore/` | Path inside the container where the datastore is stored |
+| `VELOCIRAPTOR_CONFIG_PATH` | `/etc/velociraptor/server.config.yaml` | Path inside the container for the server config file |
+| `VELOCIRAPTOR_INITIAL_ADMIN_PASSWORD` | `password` | Initial password for the admin user |
+| `VELOCIRAPTOR_NO_INITIALIZE` | _(not set)_ | Set to `TRUE` to skip building MSI/DEB/RPM packages on first start |
+| `VELOCIRAPTOR_LITERAL_CONFIG` | _(not set)_ | If set, uses the value as the literal config instead of reading from a file |
+
+## Customization
+
+You can customize the server's behavior by providing your own
+artifacts. The container loads artifacts from the
+`/custom_artifacts/` directory inside the container. The
+`InitializeServer.yaml` artifact (which runs on first startup to
+build client packages) lives there by default. You can override it
+by mounting your own directory of custom artifacts over
+`/custom_artifacts/`.
+
+See the
+[`Docker/`](https://github.com/Velocidex/velociraptor/tree/master/Docker)
+directory in the main Velociraptor repository for details about the
+entrypoint, initialization VQL, and customization options.
@@ -2,7 +2,7 @@
 menutitle: Upgrades
 title: Server Upgrades
 draft: false
-weight: 50
+weight: 60
 date: 2025-02-27
 last_reviewed: 2026-04-24
 summary: "How to upgrade your server."
Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,3 @@`
`1`	`1`	`explainability`
`2`	`2`	`abovementioned`
	`3`	`+entrypoint`