Add instructions for Gajim
This commit is contained in:
Schimon Jehudah
parent
5a6b5945dc
commit
c5a7b3330f
1 changed files with 21 additions and 0 deletions
21
README.md
Normal file
21
README.md
Normal file
|
|
@ -0,0 +1,21 @@
|
|||
## About
|
||||
|
||||
This is a "proof of concept" XMPP Bot which showcase an IQ exploite found in XEP-0045: Multi-User Chat.
|
||||
|
||||
### Instructions
|
||||
|
||||
Tested with Gajim.
|
||||
|
||||
1. Start the bot: `python iq_exploit.py -j JID -p PASSWORD`;
|
||||
2. Send the bot a message with groupchat address: `join JID_OF_MUC`;
|
||||
3. Open groupchat;
|
||||
4. Select the bot;
|
||||
5. Right-click;
|
||||
6. Execute command...;
|
||||
7. Select Ad-Hoc command "Start".
|
||||
|
||||
### Recommendations
|
||||
|
||||
Server operators are advised to disable PMs in XEP-0045 MUC.
|
||||
|
||||
Use XEP-???? for groupchat instead of XEP-0045.
|
||||
Loading…
Reference in a new issue