Closed kattstof closed 2 years ago
Love to do so as soon as I have spare time from studying and work in the next day, I'll report back after I review. Thanks and good work!
also while i have you, i'm considering adding a separate scraper with in v3n0m that would use GHDB dorks to print urls would be separate for things that would need to manually be assessed such as sensitive directories etc. would that be something you would like to see added?
Yeah, it requires small tweaks to do it unless you're adding them statically in the dork list. The CCTV tests are done btw, I can't provide logs but it does work.
AXIS: working Panasonic WJ-NT104: working
As stated before I will provide no details on how I verified this, so don't ask :) But the dorks work and have successfully led to enumeration in selected models.
Maybe I'll show PoC maybe I won't. I am not for FD in production environments.
I plan to add more cctv detections in the coming update(s) got the majority of the GHDB scraper done ;) stay tuned
@vittring Finally got some time CCTV detection is done noticed some bugs and fixed those (scanning a huge list would finish at 4000 for sqli xss and LFI) And switched urllib.urlopen to request.get for simplicity (I'm fixing things before I do a complete tear down and revert back to non Asyncio) Care to test this and report any bugs before I merge?