Question 1

What is the shiro-attack-cli skill?

Accepted Answer

当用户要求利用、检测或测试 Apache Shiro rememberMe 反序列化漏洞 (Shiro-550, CVE-2016-4437) 时使用。触发词包括 "Shiro"、"rememberMe"、"shiro attack"、"CVE-2016-4437"、"Shiro-550"、"爆破 Shiro key"、"利用 Shiro"、"Shiro 漏洞"。覆盖单目标探测、密钥爆破、Gadget 链自动检测、命令执行、内存马注入和 Key 修改。

Question 2

What tools does shiro-attack-cli use?

Accepted Answer

shiro-attack-cli does not declare a restricted tool list.

shiro-attack-cli

Details

FAQ