1120362990/vulnerability-list
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
6f7f94ac3780a9d93b8a2ae7d44cc4d2b1d4457b
vulnerability-list/docker_vuln/docker_daemon_api.py
Rpkr 6f7f94ac37 update+nmap结果整理功能
2019-01-15 18:44:35 +08:00

31 lines
770 B
Python
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# -*- coding: utf-8 -*-
import docker
'''
Usage:
moon.py -u docker_vuln http://127.0.0.1:2375
此漏洞默认存在2375端口上-nmap扫描结果- 2375/tcp open docker
贴一个漏洞介绍可能拿shellhttps://blog.csdn.net/qq_33020901/article/details/78685447
'''
def attack(URL):
print('[+]开始检测-Docker-docker_daemon_api未授权访问。[+]')
try:
client = docker.DockerClient(base_url=URL)
print('获取到的容器列表:'+str(client.containers.list()))
print('[+]存在漏洞,连接成功!!!')
except:
print('[-]连接失败,漏洞不存在。')
print('[+]检测完成-Docker-docker_daemon_api未授权访问。[+]')
print('\n')
if __name__ == "__main__":
attack()
Reference in New Issue View Git Blame Copy Permalink