From c5a7b3330f867234a7b4456c075f1d138c9794ad Mon Sep 17 00:00:00 2001
From: Schimon Jehudah <sjehuda@yandex.com>
Date: Sat, 2 Mar 2024 23:55:30 +0000
Subject: [PATCH] Add instructions for Gajim

---
 README.md | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 README.md

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..6276994
--- /dev/null
+++ b/README.md
@@ -0,0 +1,21 @@
+## About
+
+This is a "proof of concept" XMPP Bot which showcase an IQ exploite found in XEP-0045: Multi-User Chat.
+
+### Instructions
+
+Tested with Gajim.
+
+1. Start the bot: `python iq_exploit.py -j JID -p PASSWORD`;
+2. Send the bot a message with groupchat address: `join JID_OF_MUC`;
+3. Open groupchat;
+4. Select the bot;
+5. Right-click;
+6. Execute command...;
+7. Select Ad-Hoc command "Start".
+
+### Recommendations
+
+Server operators are advised to disable PMs in XEP-0045 MUC.
+
+Use XEP-???? for groupchat instead of XEP-0045.