We help IT Professionals succeed at work.
Get Started
Hydra Brute Force Attack on IP camera system
We found a camera that was installed without anyones knowledge on a jobsite, we currently have the IP camera system in our possession and there is a username and password for the device.
I have discovered that the username is "root" however the password is what we are trying to get past to see who set this up, perhaps we can get an email address off of it or if it was streaming to a website and or a NAS device or something.
So I'm currently using Hydra for Ubuntu to brute force attack the password. It is not a Basic Authentication password, it is a digest authentication. I do have a password list and when I use Hydra it comes back with several passwords it thinks is it but not the correct one.
I have read that it is due to the web interface attack that its not getting rejected on certain passwords therefore its giving me false positives.
below is what I am currently asking hydra to do but perhaps I need to add in something else to this, let me know what you think.
hydra -l root -P pwlist.txt (ip address) http-get /
I have tried this command also with -e ns and -f triggers also changing the end to http-head but still getting false positives.
Does anybody have any idea as to how I can get around this?
I have discovered that the username is "root" however the password is what we are trying to get past to see who set this up, perhaps we can get an email address off of it or if it was streaming to a website and or a NAS device or something.
So I'm currently using Hydra for Ubuntu to brute force attack the password. It is not a Basic Authentication password, it is a digest authentication. I do have a password list and when I use Hydra it comes back with several passwords it thinks is it but not the correct one.
I have read that it is due to the web interface attack that its not getting rejected on certain passwords therefore its giving me false positives.
below is what I am currently asking hydra to do but perhaps I need to add in something else to this, let me know what you think.
hydra -l root -P pwlist.txt (ip address) http-get /
I have tried this command also with -e ns and -f triggers also changing the end to http-head but still getting false positives.
Does anybody have any idea as to how I can get around this?
Why Experts Exchange?
Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.
Jim Murphy
Programmer at Smart IT Solutions
When asked, what has been your best career decision?
Deciding to stick with EE.
Mohamed Asif
Technical Department Head
Being involved with EE helped me to grow personally and professionally.
Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question
Connect with Certified Experts to gain insight and support on specific technology challenges including:
- Troubleshooting
- Research
- Professional Opinions
Did You Know?
We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE