Skip to content

Commit

Permalink
Update README.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@CMYanko
CMYanko authored Mar 19, 2019
1 parent 461c6be commit 2b1721d
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,12 +10,12 @@ Pre-requisites: have docker, and a jre installed
1. fork this repo
1. run ./mvnw clean package in project root
1. run docker build -t hack \.
1. run docker run -d -p 8080:8080 hack <--- If 8080 is in use, map to an open port e.g. -p 9080:8080
1. once container comes online - verify by running in browser http://localhost:8080
1. run docker run -d -p 9080:8080 hack
1. once container comes online - verify by running in browser http://localhost:9080

To begin testing RCE - run the exploit.py file.

1. python exploit.py http://localhost:8080/orders/3 "CMD"
1. python exploit.py http://localhost:9080/orders/3 "CMD"

Try with different CMDs like
* pwd - where are we?
Expand Down

0 comments on commit 2b1721d

Please sign in to comment.