Through the analysis of Docker Remote API Unauthorized Access Vulnerability,this paper proposes a vulnerability exploitation tool.The tool fills the gap of vulnerability detection tools and provides the batch testing function.It achieves high efficiency of vulnerability detection and lays the foundation for web security work such as bug fixes.It is effective and has low cost for the improvement of web security.%通过分析Docker Remote API未授权访问漏洞的原理,设计并实现Docker Remote API未授权访问漏洞利用工具.该工具弥补了当前网络环境下此种漏洞检测工具的缺失,并提供批量检测功能,大大提高了漏洞检测效率,为漏洞修复等安全工作打下基础,是一种效果好成本低的Web应用安全防护方案.
展开▼