Category Archives: Bruteforce

Lost password security camera system

I started a new job about 6 months ago.  Most passwords were unknown when I arrived and had to be reset.  Our security camera system needs the date/time adjusted, but the default username and password is no longer valid and nobody has an admin user, only viewer access.

I can view the 5 or so usernames by physically hooking up to the console of the system, and the password is most likely all numeric based on that you have to use a remote control to put in your password, and numbers are default.

The default username and password is ADMIN/1234 so i will be trying to crack the numeric password for ADMIN user.  Fortunately there is a web interface, and it does not lock out after so many failed attempts, or throttle at all.

Downloaded Kali Linux and booted up into Live.  Extracted the builtin wordlist in /usr/share/wordlists/rockyou.txt.gz

gzip -d /usr/share/wordlists/rockyou.txt.gz

hydra -l ADMIN -P rockyou.txt http://192.168.1.1:8080

Took less than 2 minutes and I had my password, 7 numeric digits

hydra