2 files changed, 24 insertions, 13 deletions

diff --git a/README.txt b/README.txt
index 7684815..8a0e531 100644
--- a/README.txt
+++ b/README.txt
@@ -35,6 +35,14 @@ and against any target source regardless of how it exposes its stdio.
 $ sploit exploit.py
 ```
 
+The pipe FIFOs are normally located in a temporary directory.  However, if a
+directory name is given, sploit will use that location instead.  A particularly
+useful way to use this is to store the pipes in the current directory for working
+with Docker.
+```
+$ sploit exploit.py .
+```
+
 When running in Pipes mode, sploit will wait for something to connect on the
 FIFOs before actually executing the exploit script.  Once it has finished, it
 will go back to waiting and run the script again the next time it connects.
diff --git a/sploit/main.py b/sploit/main.py
index d918418..6d71196 100644
--- a/sploit/main.py
+++ b/sploit/main.py
@@ -1,5 +1,6 @@
 from argparse import ArgumentParser, REMAINDER
 import gc
+from os.path import isdir
 import tempfile
 import traceback
 
@@ -20,24 +21,26 @@ def print_banner(color, line1=__version__, line2='', line3=''):
 def main():
     parser = ArgumentParser(description='Execute Sploit script against target')
     parser.add_argument('script', help='Exploit script to run')
-    parser.add_argument('target', nargs=REMAINDER, help='Target program to exploit')
+    parser.add_argument('target', nargs=REMAINDER, help='Target cmdline or pipes directory')
     args = parser.parse_args()
 
-    if(len(args.target)>0):
-        target(args.script, args.target)
+    if len(args.target) == 0:
+        with tempfile.TemporaryDirectory() as tmpdir:
+            pipe(args.script, tmpdir)
+    elif len(args.target) == 1 and isdir(args.target[0]):
+        pipe(args.script, args.target[0])
     else:
-        pipe(args.script)
+        target(args.script, args.target)
 
-def pipe(script):
+def pipe(script, tmpdir):
     print_banner(ERROR, line3='Pipe Mode')
-    with tempfile.TemporaryDirectory() as tmpdir:
-        while(True):
-            try:
-                p = Pipes(tmpdir)
-            except KeyboardInterrupt:
-                break
-            runscript(script, Comm(p))
-            del p
+    while True:
+        try:
+            p = Pipes(tmpdir)
+        except KeyboardInterrupt:
+            break
+        runscript(script, Comm(p))
+        del p
 
 def target(script, target):
     print_banner(STATUS, line3='Subprocess Mode')