Home Information Gathering BigBrother – Tool to Find Open Port CCTV Cameras Worldwide

BigBrother – Tool to Find Open Port CCTV Cameras Worldwide

July 15, 2021 Leave a Comment
BigBrother - Tool to Find Open Port CCTV Cameras Worldwide xploitlab

Big Brother

BiG Brother is a powerful and useful tool that can be used to find video surveillance (CCTV) cameras with open ports worldwide. To find this, the tool use Shodan search engine with its API. And with the help of the Shodan dorks, target only specific video surveillance camera brands of your choice. Once a camera detected, BiG Brother will attempt to initialize a connection to it using associate default credentials.

BiG Brother is not a perfect tool at the moment but provides basic functionalities to automate the search of video surveillance cameras with open port on Shodan and try to connect to it with using default credential. To do that, the tool will automatically detect what kind of video surveillance cameras is it (brand and model) and test the default credentials associate. It’s also possible to automate the search of cameras by targeting a specific country.

At the moment only 3 video surveillance camera brands are supported, SonyCanon and Panasonic. I plan to add the following brands in the coming weeks: AlphafinityINSTARMilesightVacron and VideoIQ. There is also the possibility to save and export the result of the research in .csv or .txt once completed.

Proof Of Concept

Requirement

  • Python 3 (Tested with Python 3.8.5)
  • Shodan Account (API key)

Installation

Clone this repository and run:

pip install -r requirements.txt

Usage

python3 big-brother.py

Contribution

Please consider contributing dorks that can reveal cameras on Shodan.

List of Dorks

I am not categorizing at the moment. Instead, I am going to just the list of dorks with a description. Many of the dorks can be modified to make the search more specific or generic.

BrandDorkDefault CredentialsDescription
Panasonictitle:”network camera”admin/12345Ex: WV-SW316, BB-ST165, BL-VP101…
Canontitle:”network camera vb-“root/cameraEx: VB-H761LVE, VB-R13, VB-H651V…
Sonytitle:”Sony Network Camera”admin/adminEx: SNC-EM602R, SNC-CX600W, SNC-EB642R…
INSTARtitle:”INSTAR Full-HD IP-Camera”admin/instarINSTAR?
VideoIQtitle:”VideoIQ Camera Login”admin/adminVideoIQ?
Milesighttitle:”Milesight Network Camera”admin/ms1234Milesight?
Vacrontitle:”Milesight Network Camera”admin/adminVacron?
Alphafinitytitle:”Alphafinity Network Camera”admin/adminAlphafinity?

Note

FOR EDUCATIONAL PURPOSE ONLY.

Download BiGBrother

You May Also Like

MetaFinder - Tool for Searching Documents in a Domain with search engine google, bing, baidu, yandex

MetaFinder – Tool for Searching Documents in a Domain

Dirsearch - Web Content Fuzzing Scanner to find juicy APIs or endpoints, sensitive data exposure, config file

Dirsearch – Web Content Discovery Scanner

IntruderPayloads - a Collection of Burpsuite Intruder Payloads For Bug Hunting

IntruderPayloads – Collection of Burpsuite Intruder Payloads For Bug Hunting

EyeWitness - Tool to Take Screenshots of Websites xploitlab

EyeWitness – Tool to Take Screenshots of Websites With Server Header Info

Gospider - Web Crawling and Content Discovery Tool

Gospider – Web Crawling and Content Discovery Tool

Arjun - Tool to Find Query Parameters for URL Endpoints HTTP parameter discovery suite

Arjun – Tool to Find Query Parameters for URL Endpoints

Leave a Reply

Your email address will not be published. Required fields are marked *

17 + 9 =