Brendan Le Glaunec
212ac2f0d5
* Refactor of cameradar library * Old unit tests updated & improved. New unit tests inc * Update documentation & issue template * Update dependencies * Update TravisCI build script to reflect argument change * Remove outdated contributing guide * Update README with more examples and remove part on library * Add second camera to Travis build script & improve error detection * Fix typo in travis script & add missing image to readme * Remember that travis uses bash syntax not fish * Use relative paths for images in the README
64 lines
2.5 KiB
Go
64 lines
2.5 KiB
Go
package cameradar
|
|
|
|
import (
|
|
"github.com/ullaakut/disgo/style"
|
|
curl "github.com/ullaakut/go-curl"
|
|
)
|
|
|
|
// PrintStreams prints information on each stream.
|
|
func (s *Scanner) PrintStreams(streams []Stream) {
|
|
if len(streams) == 0 {
|
|
s.term.Infof("%s No streams were found. Please make sure that your target is on an accessible network.\n", style.Failure(style.SymbolCross))
|
|
}
|
|
|
|
success := 0
|
|
for _, stream := range streams {
|
|
if stream.Available {
|
|
s.term.Infof("%s\tDevice RTSP URL:\t%s\n", style.Success(style.SymbolRightTriangle), style.Link(GetCameraRTSPURL(stream)))
|
|
s.term.Infof("\tAvailable:\t\t%s\n", style.Success(style.SymbolCheck))
|
|
success++
|
|
} else {
|
|
s.term.Infof("%s\tAdmin panel URL:\t%s You can use this URL to try attacking the camera's admin panel instead.\n", style.Failure(style.SymbolCross), style.Link(GetCameraAdminPanelURL(stream)))
|
|
s.term.Infof("\tAvailable:\t\t%s\n", style.Failure(style.SymbolCross))
|
|
}
|
|
|
|
if len(stream.Device) > 0 {
|
|
s.term.Infof("\tDevice model:\t\t%s\n\n", stream.Device)
|
|
}
|
|
|
|
s.term.Infof("\tIP address:\t\t%s\n", stream.Address)
|
|
s.term.Infof("\tRTSP port:\t\t%d\n", stream.Port)
|
|
|
|
switch stream.AuthenticationType {
|
|
case curl.AUTH_NONE:
|
|
s.term.Infoln("\tThis camera does not require authentication")
|
|
case curl.AUTH_BASIC:
|
|
s.term.Infoln("\tAuth type:\t\tbasic")
|
|
case curl.AUTH_DIGEST:
|
|
s.term.Infoln("\tAuth type:\t\tdigest")
|
|
}
|
|
|
|
if stream.CredentialsFound {
|
|
s.term.Infof("\tUsername:\t\t%s\n", style.Success(stream.Username))
|
|
s.term.Infof("\tPassword:\t\t%s\n", style.Success(stream.Password))
|
|
} else {
|
|
s.term.Infof("\tUsername:\t\t%s\n", style.Failure("not found"))
|
|
s.term.Infof("\tPassword:\t\t%s\n", style.Failure("not found"))
|
|
}
|
|
|
|
if stream.RouteFound {
|
|
s.term.Infof("\tRTSP route:\t\t%s\n\n\n", style.Success("/"+stream.Route))
|
|
} else {
|
|
s.term.Infof("\tRTSP route:\t\t%s\n\n\n", style.Failure("not found"))
|
|
}
|
|
}
|
|
|
|
if success > 1 {
|
|
s.term.Infof("%s Successful attack: %s devices were accessed", style.Success(style.SymbolCheck), style.Success(len(streams)))
|
|
} else if success == 1 {
|
|
s.term.Infof("%s Successful attack: %s device was accessed", style.Success(style.SymbolCheck), style.Success("one"))
|
|
} else {
|
|
s.term.Infof("%s Streams were found but none were accessed. They are most likely configured with secure credentials and routes. You can try adding entries to the dictionary or generating your own in order to attempt a bruteforce attack on the cameras.\n", style.Failure("\xE2\x9C\x96"))
|
|
}
|
|
}
|