Setting up docker - Githubissues

kkirsche / CVE-2017-10271

Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)

Apache License 2.0

126 stars 42 forks source link

Setting up docker #5

Closed bmcculley closed 6 years ago

bmcculley commented 6 years ago

Would it be a good idea to describe how to setup the docker image? I'm thinking setting/starting up the weblogic domain and the docker build also currently installs python 3 with a command of python3 so this also needs configuring or a payload modification or just updating the dockerfile. Anyway just wondering if such things should be included in the readme or left as an exercise for the user?

kkirsche commented 6 years ago

The Dockerfile included in this repo installs Python 2 which is the default shell payload for Unix. The prebuilt version of this is available on Docker Hub at https://hub.docker.com/r/kkirsche/cve-2017-10271/

Should the user want to leverage Python 3, it is an exercise for the user. Setup of the actual container is noted in:

https://github.com/kkirsche/CVE-2017-10271/blob/master/vulnerable_machine_setup.md

Anything outside of that scope is currently an exercise for the user.

bmcculley commented 6 years ago

Oops, I had missed that setup file.

I ran docker build on the Dockerfile last night and ended up with only python3 on the image...