tud-cybersec-java-lab

A Docker-based solution to run the JavaVulnerableLab for the TUD Cyber Security course

Setup

Prerequisites

1. Install and run Docker Desktop
2. Initialize submodules: git submodule update --init --recursive

Create Lab

Run docker compose up

Destroy Lab

Run: docker compose down

Install Data

1. Open: http://localhost:8080/JavaVulnerableLab/install.jsp
2. Replace the JDBC URL String with jdbc:mysql://mysql:3306/abc
3. Click Install

Optional Step - Debug with IntelliJ

The above configuration starts the JavaVulnerableLab in debug mode by default. To connect to it:

1. Open the project in IntelliJ
2. Select Run -> Edit Configurations...
3. Select + -> Add New Configuration -> Remote JVM Debug
4. Select Debugger Mode -> Attach to remote JVM
5. Select Transport -> Socket
6. Select Host -> localhost
7. Select Port -> 8000
8. Select JDK 9 or later beside Command line arguments for remote JVM
9. Select Use module classpath -> java-vulnerable-lab
10. Select "Ok"

Optional Step - Manage the Database with MySQL Workbench

Prerequisites

Install and run MySQL Workbench

Add the MySQL Workbench Connection

1. Select + beside MySQL Connections
2. Select Connection Name -> tud-cybersec-java-lab
3. Select Username -> root
4. Select Store in Vault ... -> Password -> root -> Ok
5. Select Ok

Check Databases

With MySQL Workbench open, after completing the Install Data step above

Execute Query:

USE `abc`;
SHOW TABLES;

Should return:

cards
FilesList
Messages
posts
tdata
UserMessages
users

Execute Query:

USE `trump`;
SHOW TABLES;

Should return:

carddetail
posts
users