Merge pull request #3 from m4n3dw0lf/master

Adding Docker option

Author: CSPF-Founder

Dockerfile

@@ -0,0 +1,9 @@
+FROM tomcat
+
+COPY . .
+
+RUN apt-get update ; apt-get install maven default-jdk -y ; update-alternatives --config javac
+
+RUN mvn clean package ; cp target/*.war /usr/local/tomcat/webapps/
+
+CMD ["catalina.sh","run"]

README.md

@@ -11,8 +11,22 @@ https://www.udemy.com/hacking-securing-java-web-programming/
 How to Use/Setup ?
 -------------
 
-**Method 1.Very Easiest Method : VirtualBox VM**
-  The Most easiest way to use Java Vulnerable is using the VirtualBox VM which has everything set up and ready to use. 
+**Method 1.Super Very Easiest Method: Docker**
+  The easiest way to use Java Vulnerable is using Docker which set up everything for you with 1 command line
+
+  Steps:
+
+     1. Install Docker: https://docs.docker.com/engine/installation/ 
+     2. Install docker-compose: https://docs.docker.com/compose/install/
+     3. Inside this directory, run `sudo docker-compose up` and wait untill everything is configured for you.
+     4. In your Browser, go to "http://localhost:8080/JavaVulnerableLab/install.jsp
+     5. Change the JDBC URL from jdbc:mysql://localhost:3306 to jdbc:mysql://mysql:3306
+     6. Click the Install Button
+     7. Enjoy :)
+
+
+**Method 2.Very Easiest Method : VirtualBox VM**
+  The second most easiest way to use Java Vulnerable is using the VirtualBox VM which has everything set up and ready to use. 
 
   Steps:
 
@@ -28,7 +42,7 @@ How to Use/Setup ?
       10. Click the Install Button
       11. Enjoy :)
 
-**Method 2.Easiest Method : Standalone Web Application**
+**Method 3.Easiest Method : Standalone Web Application**
   In this mehtod, you will be running an executable "JAR" file which runs the application with an embedded Apache Tomcat. 
 
     Steps:
@@ -39,7 +53,7 @@ How to Use/Setup ?
         4. In your Browser, go to "http://localhost:8080/JavaVulnerableLab/install.jsp 
         5. Click the Install Button
         
-**Method 3. Using War file:**
+**Method 4. Using War file:**
   This is a NORMAL method to deploy the WAR file. 
 
   Steps:

docker-compose.yml

@@ -0,0 +1,11 @@
+javavulnlab:
+  build: .
+  ports:
+    - 8080:8080
+  links: 
+    - mysql
+
+mysql:
+  image: mysql
+  environment:
+    - MYSQL_ROOT_PASSWORD=root

src/main/webapp/WEB-INF/config.properties

@@ -5,6 +5,6 @@
 dbuser=root
 dbpass=root
 dbname=abc
-dburl=jdbc:mysql://localhost:3306/
+dburl=jdbc:mysql://mysql:3306/
 jdbcdriver=com.mysql.jdbc.Driver
-siteTitle=Java Vulnerable Lab
+siteTitle=Java Vulnerable Lab

src/main/webapp/install.jsp

@@ -10,7 +10,7 @@
     <tr><td>Database User:</td> <td><input type="text" name="dbuser" value="root"/></td></tr>
      <tr><td>Database Password:</td> <td><input type="text" name="dbpass" value="root"/></td></tr>
        <tr><td>JDBC Driver:</td> <td><input type="text" name="jdbcdriver" value="com.mysql.jdbc.Driver"/></td></tr>
-       <tr><td>JDBC URL:</td> <td><input type="text" name="dburl" value="jdbc:mysql://localhost:3306/"/></td></tr>
+       <tr><td>JDBC URL:</td> <td><input type="text" name="dburl" value="jdbc:mysql://mysql:3306/"/></td></tr>
        <tr><td>Admin Login Credential:</td></tr>
        <tr><td>Username(Default):</td> <td><input type="text" name="adminuser" value="admin"/></td></tr>
        <tr><td>Password(Default):</td> <td><input type="text" name="adminpass" value="admin"/></td></tr>