google · robert-doyensec · May 1, 2026 · May 1, 2026
diff --git a/apache/nifi_api/exposedui/README.md b/apache/nifi_api/exposedui/README.md
@@ -4,3 +4,33 @@ This directory contains the deployment configs for a vulnerable Apache NiFi API
 version (1.12.0).
 
 The deployed service has name `apache-nifi-api` and listens on port `8080`.
+
+## Docker Compose
+```
+docker compose up
+```
+Vulnerable service (no authentication) will be on port 8081
+Safe service (default auth + TLS) will be on port 8082.
+
+## Testing the vulnerability
+### Vulnerable
+```
+curl localhost:8081/nifi-api/access/config
+```
+Response:
+```
+{"config":{"supportsLogin":false}}
+```
+
+### Safe
+```
+curl -vk https://localhost:8082/nifi-api/access/config
+```
+Response:
+```
+HTTP/2 401
+...
+
+Unauthorized
+```
+
diff --git a/apache/nifi_api/exposedui/docker-compose.yml b/apache/nifi_api/exposedui/docker-compose.yml
@@ -0,0 +1,16 @@
+services:
+  nifi-vuln:
+    container_name: nifi-vuln
+    image: apache/nifi:1.12.0
+    ports:
+      - "8081:8080"
+
+  nifi-safe:
+    container_name: nifi-safe
+    environment:
+      - SINGLE_USER_CREDENTIALS_USERNAME=admin 
+      - SINGLE_USER_CREDENTIALS_PASSWORD=ggdwsfsddwfgwregwrgrheeg
+      - NIFI_WEB_HTTPS_PORT=8082
+    image: apache/nifi:2.9.0
+    ports:
+      - "8082:8082"