feat(script): add run scripts for exploit demonstration

Author: AIPEAC

simulation/attack-script/exploit_cve_2017_5638.ps1

@@ -197,4 +197,4 @@ try {
 }
 
 Write-Host ""
-Read-Host "Enter to exist"
+

simulation/attack-script/run.ps1

@@ -0,0 +1,15 @@
+s = Read-Host "Enter 0 to run the exploit in safe demo mode, or 1 for full RCE" -AsSecureString | ConvertFrom-SecureString | ForEach-Object {
+	switch ($_ -replace '"', '') {
+		'0' { "Running in safe demo mode...`n" }
+		'1' { "Running with full RCE...`n" }
+		default { throw "Invalid choice. Please enter 0 or 1." }
+	}
+}
+if ($s -eq '0') {
+    # Safe demo (proves OGNL eval, no OS commands):
+    .\exploit_cve_2017_5638.ps1 -DemoMode
+} elseif ($s -eq '1') {
+    # Full RCE:
+    .\exploit_cve_2017_5638.ps1 -Command "whoami"
+}
+Read-Host "Press Enter to exit..."

simulation/backend/run.ps1

@@ -0,0 +1,2 @@
+mvn tomcat7:run
+Read-Host "Enter to exit"