Merge pull request #3 from RULCSoft/master

CVE-2018-4407 PoC docs: Advice to use linux capabilities instead of running with full root privileges

Author: sj

apple/darwin-xnu/icmp_error_CVE-2018-4407/README.md

@@ -35,3 +35,12 @@ sudo ./crash_all
 ```
 
 Use `crash_all` with care: it will crash any unpatched Apple device that is connected to the same network as you.
+
+Alternatively you can give the `CAP_NET_RAW` capability to the binaries instead of using them under full root privileges:
+
+```bash
+sudo setcap cap_net_raw=ep crash_all
+sudo setcap cap_net_raw=ep direct_attack
+```
+
+Some libs are required to use setcap (libcap-ng-utils, libcap-progs, libcap2)