search

A3sal0n / FalconGate

A smart gateway to stop cyber criminals - Sponsored by Falcon Guard
https://falconguard.cz
GNU General Public License v3.0
252 stars 59 forks source link

Detect devices with default vendor credentials #35

Closed A3sal0n closed 7 years ago

A3sal0n commented 7 years ago

Implement new feature to detect devices in the FalconGate network which have active default user accounts and passwords or weak credentials.

Send an awareness alert with recommendations to the user if such issue will be found.

A3sal0n commented 7 years ago

We decided to use the combination Nmap/ Ncrack for this feature.

A3sal0n commented 7 years ago

Finally this new feature is working on our latest commit to master (05e6fb6cb449408fc12b6074d84a2311187ee2ce)

We decided to replace Ncrack with Hydra due to issues compiling Ncrack for Raspbian and also due to its poor performance.

A3sal0n commented 7 years ago

Added support for the assessment of default credentials for additional protocols. List of protocols currently supported:

See related commit for details.

A3sal0n commented 7 years ago

No issues reported regarding this new feature.