How to geolocate a Wireless IP Camera (P2P) WIFICAM

Yesterday I read about how to access in a remote Wireless IP Camera (P2P) WIFICAM (this is the link https://pierrekim.github.io/blog/2017-03-08-camera-goahead-0day.html)
Fortunately, I had one to test it and validate the bug.

This camera has telnet, but I could never find the password.
If you try the bug, yo can replace telnet by a bash terminal, using and exploit in C or throught the webpage:















Now, when you try access to your camera throught telnet, you will have root access.





















Also, if you exploit this vulnerability in a random camera, you could know where is it in the world, just with the wireless information.






With this information, you can search it in Wigle databases to get the latitude and longitude.
PyGLE is a wrapper for the WiGLE WiFi mapping API (https://github.com/jamiebull1/pygle) and you can use it to get the geolocation information just with the bssid.

Install pygle just with the following command:

pip instal pygle

I used a Pygle example in http://oco-carbon.com/coding/wigle-pygle-wifi-geolocation/ and I modified it to search by an bssid as argument:

from pygle import network
import sys

def geolocate(bssid):
    """geolocate a bssid    """    lats = []
    longs = []
    lat, lng = geolocate_wigle(bssid)
    if lat and lng:
        lats.append(lat)
        longs.append(lng)
    if lats and longs:
        lat = sum(lats) / len(lats)
        lng = sum(longs) / len(longs)
        return lat, lng
    else:
        return "No geolocation possible"

def geolocate_wigle(bssid):
    """Search WiGLE for a BSSID and return lat/lng.    """    res = network.search(netid=bssid)
    if res['success'] and res['resultCount']:
        lat = res['results'][0]['trilat']
        lng = res['results'][0]['trilong']
    else:
        print(res)
        lat, lng = None, None    return lat, lng

if __name__ == "__main__":
    print(geolocate(sys.argv[1]))



Enjoy it!








































Comments











Post a Comment



















Popular posts from this blog









Exception: Could not find a default OpenFlow controller in Mininet





















If you try to run a mininet script like this  , maybe you will get this problem if you are under Ubuntu.   Exception: Could not find a default OpenFlow controller    This is trigger because your system don't find a default controller .  To enable it just add the first line and add the controller argument to net variable like the second line:   from mininet.node import OVSController  net = Mininet(topo=topo,host=CPULimitedHost, link=TCLink,controller = OVSController)   Now, you will get the following error:   c0 Cannot find required executable ovs-controller.  Please make sure that it is installed and available in your $PATH:  (/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin)   ovs-controller is a legacy name. You need to be sure that you has it.   sudo apt-get install openvswitch-testcontroller  sudo cp /usr/bin/ovs-testcontroller /usr/bin/ovs-controller   If you run it again, you should kill ovs-testcontroller first to avoid this:    Exception: Please shut d








Read more










How to fix Android when developer options are not available for this user




















Image







I have an Android One with Oreo version and suddenly my Android rebooted and after that it started to behave strangely:   1) Notification section doesn't work. I can't see notifications from my apps and the arrow and the screw icon to settings access don't work.       2) As I can't access to the notification area, I can't enable Use USB to Transfer Files to access to my phone memory.   3) I can't access to developer mode (I before active it with a lot of taps over Build number). Clicking on developer options just shows developer options are not available to this user.       4) I can't update or install the apps on google play. They freeze on Download pending... message       5) Home and Switch buttons don't work. They light up and vibrate when I tap them but they do nothing.   This issue is apparently related to a deconfiguration of user accounts. To fix it, you need re-setup the users.  As you can't access to the user manager (you are in guest mode 








Read more










Webcam streaming throught VLC with YUY2 compatibility





















If you try to stream your webcam throught VLC you probably will see the following issue:   # vlc v4l2:///dev/video0 --sout '#rtp{mux=ts,sdp=rtsp://:8888/live.sdp}'    VLC media player 3.0.4 Vetinari (revision 3.0.4-0-gf615db6332)  [000055c7620dd630] main libvlc: Running vlc with the default interface. Use 'cvlc' to use vlc without interface.  [00007ff730002fe0] main mux error: cannot add this stream  [00007ff730001180] stream_out_rtp stream out error: cannot add this stream to the muxer  [00007ff73000ff60] main decoder error: cannot create packetizer output (YUY2)  [00007ff73000ff60] main decoder error: buffer deadlock prevented   To fix it, you must enable the transcoding and run the following command:   cvlc -vvv v4l2:///dev/video0:chroma=mp2v --v4l2-width 1280 --v4l2-height 720 --sout '#transcode{vcodec=mp2v,acodec=mpga,fps=30}:rtp{mux=ts,sdp=rtsp://:8888/live.sdp}'   where chroma enables hardware video decoding. You can edit the resolution, codecs and frame 








Read more