###
DOI:10.15888/j.cnki.csa.005893
计算机系统应用英文版:2017,26(8):247-251
View/Add Comment     过刊浏览    高级检索     HTML
←前一篇   |   后一篇→
本文二维码信息
码上扫一扫!
Docker Remote API未授权访问漏洞利用工具
孙建1, 蔡翔1, 王潇1, 夏雨潇2
(1.国网安徽省电力公司 电力科学研究院, 合肥 230601;2.国网安徽省电力公司 安庆供电公司, 安庆 246003)
Docker Remote API Unauthorized Access Vulnerability Exploitation Tool
SUN Jian1, CAI Xiang1, WANG Xiao1, XIA Yu-Xiao2
(1.State Grid Anhui Electric Power Research Insitute, Hefei 230601, China;2.State Grid Anqing Electric Power Suply, Anqing 246003, China)
摘要
图/表
参考文献
相似文献
本文已被:浏览 1373次   下载 2207
Received:November 21, 2016    
中文摘要: 通过分析Docker Remote API未授权访问漏洞的原理,设计并实现Docker Remote API未授权访问漏洞利用工具.该工具弥补了当前网络环境下此种漏洞检测工具的缺失,并提供批量检测功能,大大提高了漏洞检测效率,为漏洞修复等安全工作打下基础,是一种效果好成本低的Web应用安全防护方案.
中文关键词: Docker Remote API  漏洞利用  漏洞检测  Web应用安全
Abstract:Through the analysis of Docker Remote API Unauthorized Access Vulnerability, this paper proposes a vulnerability exploitation tool. The tool fills the gap of vulnerability detection tools and provides the batch testing function. It achieves high efficiency of vulnerability detection and lays the foundation for web security work such as bug fixes. It is effective and has low cost for the improvement of web security.
keywords: Docker Remote API  vulnerability exploitation  vulnerability detection  Web application security
文章编号:     中图分类号:    文献标志码:
基金项目:
Author NameAffiliation
SUN Jian State Grid Anhui Electric Power Research Insitute, Hefei 230601, China 
CAI Xiang State Grid Anhui Electric Power Research Insitute, Hefei 230601, China 
WANG Xiao State Grid Anhui Electric Power Research Insitute, Hefei 230601, China 
XIA Yu-Xiao State Grid Anqing Electric Power Suply, Anqing 246003, China 
Author NameAffiliation
SUN Jian State Grid Anhui Electric Power Research Insitute, Hefei 230601, China 
CAI Xiang State Grid Anhui Electric Power Research Insitute, Hefei 230601, China 
WANG Xiao State Grid Anhui Electric Power Research Insitute, Hefei 230601, China 
XIA Yu-Xiao State Grid Anqing Electric Power Suply, Anqing 246003, China 
引用文本:
孙建,蔡翔,王潇,夏雨潇.Docker Remote API未授权访问漏洞利用工具.计算机系统应用,2017,26(8):247-251
SUN Jian,CAI Xiang,WANG Xiao,XIA Yu-Xiao.Docker Remote API Unauthorized Access Vulnerability Exploitation Tool.COMPUTER SYSTEMS APPLICATIONS,2017,26(8):247-251

用微信扫一扫

Copyright:Institute of Software, Chinese Academy of Sciences
Postal address:4# South Fourth Street, Zhongguancun,Haidian, Beijing,Encoding:100190
Tel:010-62661041 Email:csa (a) iscas.ac.cn
Technical support:Beijing Qin Yun science and Technology Development Co., Ltd.