jimywork / shodanwave Goto Github PK

Shodanwave is a tool for exploring and obtaining information from Netwave IP Camera.

Python 100.00%

shodan-api netwave-ip-cameras camera vulnerability-scanners python exploit shodan ipcamera

shodanwave's Introduction

Shodanwave

Shodanwave is a tool for exploring and obtaining information from cameras specifically Netwave IP Camera. The tool uses a search engine called shodan that makes it easy to search for cameras online.

What does the tool to? Look, a list!

Search
Brute force
SSID and WPAPSK Password Disclosure
E-mail, FTP, DNS, MSN Password Disclosure
Exploit

This is an example of shodan wave running, the password was not found through raw force so the tool tries to leak the camera's memory. If the tool finds the password it does not try to leak the memory.

How to use?

To use shodanwave you need an api key which you can get for free at https://www.shodan.io/, then you need to follow the next steps.

Installation

$ cd /opt/
$ git clone https://github.com/fbctf/shodanwave.git
$ cd shodanwave
$ pip install -r requirements.txt

Usage

Usage: python shodanwave.py -u usernames.txt -w passwords.txt  -k Shodan API key --t OUTPUT
       python shodanwave.py --help 
         __              __                                   
   _____/ /_  ____  ____/ /___ _____ _      ______ __   _____ 
  / ___/ __ \/ __ \/ __  / __ `/ __ \ | /| / / __ `/ | / / _ \
 (__  ) / / / /_/ / /_/ / /_/ / / / / |/ |/ / /_/ /| |/ /  __/
/____/_/ /_/\____/\__,_/\__,_/_/ /_/|__/|__/\__,_/ |___/\___/ 
                                                              

This tool is successfully connected to shodan service
Information the use of this tool is illegal, not bad.

usage: shodanwave.py [-h] [-s SEARCH] [-u USERNAME] [-w PASSWORD] [-k ADDRESS]

optional arguments:
  -h, --help            show this help message and exit
  -s SEARCH, --search SEARCH
                        Default Netwave IP Camera
  -u USERNAME, --username USERNAME
                        Select your usernames wordlist
  -w PASSWORD, --wordlist PASSWORD
                        Select your passwords wordlist
  -k ADDRESS, --shodan ADDRESS
                        Shodan API key
  -l LIMIT, --limit LIMIT
                        Limit the number of registers responsed by Shodan
  -o OFFSET, --offset OFFSET
                        Shodan skips this number of registers from response
  -t OUTPUT, --output OUTPUT
                        Save the results
  -p, --tor
		        All Requests/Wgets go through Tor

Attention

Use this tool wisely and not for evil. To get the best performece of this tool you need to pay for shodan to get full API access Options --limit and --offset may need a paying API key and consume query credits from your Shodan account.

Disclaimer

Code samples are provided for educational purposes. Adequate defenses can only be built by researching attack techniques available to malicious actors. Using this code against target systems without prior permission is illegal in most jurisdictions. The authors are not liable for any damages from misuse of this information or code.

Required if using Proxy!!!

Modify your Tsocks config!!

Add/Modify the following at the bottom:
server =
server_type = <4 or 5>
server_port =
default_pass = (Might be required for proxy)

Donations

XMR: 49m12JEEC6HPCHkLMX5QL4SrDQdKwh6eb4Muu8Z9CwA9MwemhzFQ3VcgHwyuR73rC22WCymTUyep7DVrfN3GPt5JBCekPrR

References:

Shodan API search engine for Internet-connected devices.
Requests Requests: HTTP for Humans
Netwave Exploit Netwave IP Camera - Password Disclosure

shodanwave's People

Contributors

Stargazers

Watchers

Forkers

lucafmarques tfroehlich82 akpotter h3ll0world andriso naylamp6 peterpt ieguiguren songofhack alma4rebi coder1105 tobey123 omergunal tijikun7764119x shizzz477 boredprog kuteminh11 orinocoz ajm41 ksmaheshkumar subc0ol grukz evilsocketbr dothanthitiendiettiende maurice-schuppe diegod79 securitywarrior h3di exploitcollection stahlz crackercat theanalyzer coffeemlx v0re eescanilla suxnet1 blackteamcobra jackofaces asp10036 nttungub mfrigillana securityanalysts m1tn1ck fleschier bankhappy8 rakhithjk ericst0ltz orf53975 lotus321 seabreg zelda180 5l1v3r1 mgina879 dominicporter afteraim dhyanan73 seeeyei fishke22 say383 churchkelevra kylonvo

shodanwave's Issues

Error when start

Traceback (most recent call last):
File "./shodanwave.py", line 357, in
main()
File "./shodanwave.py", line 342, in main
NetworkSearchosts()
File "./shodanwave.py", line 265, in NetworkSearchosts
log(host, port, country, city, org, product)
File "./shodanwave.py", line 348, in log
file = open(filename, 'a')
IOError: [Errno 2] No such file or directory: ''

Unicode equal comparison failed

I don't know how the tool works, but this happened which might not seem intended: Unicode equal comparison failed

MBP:shodanwave $ python shodanwave.py -k KEY
         __              __                                   
   _____/ /_  ____  ____/ /___ _____ _      ______ __   _____ 
  / ___/ __ \/ __ \/ __  / __ `/ __ \ | /| / / __ `/ | / / _ \
 (__  ) / / / /_/ / /_/ / /_/ / / / / |/ |/ / /_/ /| |/ /  __/
/____/_/ /_/\____/\__,_/\__,_/_/ /_/|__/|__/\__,_/ |___/\___/ 
                                                              

This tool is successfully connected to shodan service
Information the use of this tool is illegal, not bad.

[+] Shodan successfully Connected.
[+] Netwave Exploit Enabled.
[+] Netwave IP Camera Found: 82071
[!] Disable password discovery module? (Yes/no): no
[+] Launching brute force on host http://78.51.241.109:82
[-] http://78.51.241.109:82/snapshot.cgi not found
[!] Getting System Information
[!] Getting Wireless System Information
[+] Mac address found 006E0606731F
[+] Host: http://78.51.241.109:82
[+] Country: Germany
[+] City: Berlin
[+] Organization: O2 Deutschland
[+] Product: Netwave IP camera http config
[!] Error: Wireless lan is disabled..
[+] Starting to read memory dump.. this could take a few minutes
[+] CTRL+C to exit..
[+] Strings in binary data found.. password should be around line 10000
shodanwave.py:348: UnicodeWarning: Unicode equal comparison failed to convert both arguments to Unicode - interpreting them as being unequal
  if line == macaddr:

Exploit Netwave IP Camera - Password Disclosure Not Working

Hi,

Selecting "no" here "Disable password discovery module? (Yes/no):", the Exploit Netwave IP Camera - Password Disclosure is not working at all.

The process after output "print "[+] Strings in binary data found.. password should be around line 10000"" shows nothing after that.

Looks like hang or process is actually running.

Not sure how to check.

-rw-r--r-- 1 johnnyl johnnyl 29 Sep 21 13:54 passwords.txt
-rw-r--r-- 1 johnnyl johnnyl 2930 Sep 21 13:44 README.md
-rw-r--r-- 1 johnnyl johnnyl 32 Sep 21 13:44 requirements.txt
-rw-r--r-- 1 root root 3360 Sep 21 14:17 results.txt
-rwxr-xr-x 1 johnnyl johnnyl 13588 Sep 21 13:44 shodanwave.py
-rw-r--r-- 1 root root 798880 Sep 21 14:19 tmpstream.txt
-rw-r--r-- 1 root root 4097 Sep 21 14:17 tmpstrings.out
-rw-r--r-- 1 johnnyl johnnyl 7 Sep 21 13:54 usernames.txt
-rw-r--r-- 1 root root 0 Sep 21 13:58 wget-log
-rw-r--r-- 1 root root 0 Sep 21 14:17 wget-log.1

.

Error: no module named shodan

Hi, i installed everything i needed to run shodanwave on my kali 2021.3 system but it shows the error above, i tried updating shodan but it didnt help.

No module named pyfiglet... Tks!

Country always shows 'n/a' even when the information is available

The code:
country = hosts.get('country', 'n/a')
always returns 'n/a'.
I've found country_name inside location key which will return the name of the country.
"location" : "{u'city': None, u'region_code': None, u'area_code': None, u'longitude': -58.381699999999995, u'country_code3': u'ARG', u'latitude': -34.60329999999999, u'postal_code': None, u'dma_code': None, u'country_code': u'AR', u'country_name': u'Argentina'}"

SyntaxError

File "/opt/shodanwave/shodanwave.py", line 63
print "Usage: python shodanwave.py --help"
^
SyntaxError: Missing parentheses in call to 'print'. Did you mean print("Usage: python shodanwave.py --help")?

any help2

plz type foul comeend

[-] Netwave exploit disabled.

how i type
its like
??
./shodanwave.py -s/--serch -u username.txt -w passwords.txt -k api -t --output results.txt ??

error execution

This tool is successfully connected to shodan service
Information the use of this tool is illegal, not bad.

[+] Shodan successfully Connected.
[+] Netwave Exploit Enabled.
[+] Netwave IP Camera Found: 99149
[+] Passwords loaded: 4
[!] Disable password discovery module? (Yes/no):
[+] Launching brute force on host http://82.124.25.174:8086
[!] Password not found
[!] Getting System Information
[!] Getting Wireless System Information
[+] Mac address found 00606E8EC329
[+] Host: http://82.124.25.174:8086
[+] Country: France
[+] City: Montigny-le-bretonneux
[+] Organization: Orange
[+] Product: n/a
Traceback (most recent call last):
File "shodanwave.py", line 352, in
main()
File "shodanwave.py", line 337, in main
NetworkSearchosts()
File "shodanwave.py", line 260, in NetworkSearchosts
log(host, port, country, city, org, product)
File "shodanwave.py", line 343, in log
file = open(filename, 'a')
IOError: [Errno 2] No such file or directory: ''

any help

Error: ('Connection aborted.', error(104, 'Connection reset by peer'))
[!] Getting System Information
[!] Getting Wireless System Information
[+] Mac address found
[+] Host:
[+] Country: United States
[+] City: Buffalo
[+] Organization: Time Warner Cable
[+] Product: Netwave IP camera http config
Traceback (most recent call last):
File "./shodanwave.py", line 352, in
main()
File "./shodanwave.py", line 337, in main
NetworkSearchosts()
File "./shodanwave.py", line 260, in NetworkSearchosts
log(host, port, country, city, org, product)
File "./shodanwave.py", line 343, in log
file = open(filename, 'a')
IOError: [Errno 2] No such file or directory: ''