DEDSEC_PTZ_STRM_EXPLOIT

DEDSEC_PTZ_STRM_EXPLOIT is a vulnerability that allows unauthorized control of an IP camera using the ONVIF protocol, The provided proof-of-concept code is capable capture video stream and controlling camera movement.

DESCRIPTION

PTZ stands for Pan, Tilt, and Zoom, and it refers to the capabilities of a type of camera commonly known as a PTZ camera. These cameras are designed for remote control over their movement and focus. Here's what each component of PTZ represents:

• Pan: This refers to the horizontal movement of the camera. A PTZ camera can rotate left and right, allowing it to cover a wide area without physically moving the camera itself.

• Tilt: Tilt refers to the vertical movement of the camera. A PTZ camera can tilt up and down, enabling it to change its viewing angle and cover a range of vertical angles.

• Zoom: Zoom refers to the camera's ability to change its focal length, making objects appear closer or farther away. PTZ cameras often come with optical zoom capabilities, allowing them to capture distant subjects with clarity.

PTZ cameras are commonly used for surveillance, video conferencing, and live event coverage, as they offer the flexibility to adjust the camera's view remotely. This makes them particularly useful in situations where you need to monitor or capture different parts of a scene without physically repositioning the camera.

DEDSEC_PTZ_STRM_EXPLOIT is a exploit tool with the ability to send meticulously crafted code, enabling it to gain control over the target camera's movements and execute PTZ (Pan, Tilt, Zoom) commands seamlessly, all accomplished without the necessity of a username and password. This tool empowers users to manipulate camera functions and surveillance angles with precision, making it a valuable asset in various applications such as security, monitoring, and remote control scenarios.

INSTALLATION

* git clone https://github.com/0xbitx/DEDSEC_PTZ_STRM_EXPLOIT.git
* cd DEDSEC_PTZ_STRM_EXPLOIT
* sudo apt-get install mplayer
* sudo apt-get install xterm
* sudo pip3 install tabulate progressbar2
* chmod +x str dedsec_ptz_strm
* ./dedsec_ptz_strm

TESTED ON FOLLOWING

• Kali Linux
• Parrot OS
• Ubuntu

TESTED ON FOLLOWING

• cctv camera Onvif protocol

ERROR INSTALLING MPLAYER

  echo "deb http://in.archive.ubuntu.com/ubuntu/ focal main universe" | sudo tee -a /etc/apt/sources.list
  sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 3B4FE6ACC0B21F32
  sudo apt update
  sudo apt install mplayer

[!NOTE]\ The (capture video stream) feature requires the camera password to access real-time camera footage.

Support

If you find my work helpful and want to support me, consider making a donation. Your contribution will help me continue working on open-source projects.

Bitcoin Address: 36ALguYpTgFF3RztL4h2uFb3cRMzQALAcm

DISCLAIMER

I'm not responsible for anything you do with this program, so please only use it for good and educational purposes.