import "github.com/Ullaakut/cameradar"
Package cmrdr provides methods to be able to discover and attack RTSP streams easily. RTSP streams are used by most IP Cameras, often for surveillance.
A simple example usage of the library can be found in https://github.com/ullaakut/cameradar/tree/master/cameradar
The example usage is complete enough for most users to ignore the library, but for users with specific needs such as creating their own bruteforcing dictionary to access cameras, or running their own network scan, this library allows to use simple and performant methods to attack streams.
attack.go cmrdr.go curl.go discover.go helpers.go loaders.go models.go
GetCameraAdminPanelURL returns the URL to the camera's admin panel
GetCameraRTSPURL generates a stream's RTSP URL
ParseTargetsFile parses an input file containing hosts to targets
type Credentials struct {
Usernames []string `json:"usernames"`
Passwords []string `json:"passwords"`
}Credentials is a map of credentials usernames are keys and passwords are values creds['admin'] -> 'secure_password'
func LoadCredentials(path string) (Credentials, error)
LoadCredentials opens a dictionary file and returns its contents as a Credentials structure
func ParseCredentialsFromString(content string) (Credentials, error)
ParseCredentialsFromString parses a dictionary string and returns its contents as a Credentials structure
Curl is a libcurl wrapper used to make the Curler interface work even though golang currently does not support covariance (see https://github.com/golang/go/issues/7512)
Duphandle wraps curl.Duphandle
type Curler interface {
Setopt(opt int, param interface{}) error
Perform() error
Getinfo(info curl.CurlInfo) (interface{}, error)
Duphandle() Curler
}Curler is an interface that implements the CURL interface of the go-curl library Used for mocking
type Options struct {
Targets []string `json:"target" validate:"required"`
Ports []string `json:"ports"`
Routes Routes `json:"routes"`
Credentials Credentials `json:"credentials"`
Speed int `json:"speed"`
Timeout time.Duration `json:"timeout"`
}Options contains all options needed to launch a complete cameradar scan
Routes is a slice of Routes ['/live.sdp', '/media.amp', ...]
LoadRoutes opens a dictionary file and returns its contents as a Routes structure
ParseRoutesFromString parses a dictionary string and returns its contents as a Routes structure
type Stream struct {
Device string `json:"device"`
Username string `json:"username"`
Password string `json:"password"`
Route string `json:"route"`
Address string `json:"address" validate:"required"`
Port uint16 `json:"port" validate:"required"`
CredentialsFound bool `json:"credentials_found"`
RouteFound bool `json:"route_found"`
Available bool `json:"available"`
}Stream represents a camera's RTSP stream
func AttackCredentials(c Curler, targets []Stream, credentials Credentials, timeout time.Duration, log bool) ([]Stream, error)
AttackCredentials attempts to guess the provided targets' credentials using the given dictionary or the default dictionary if none was provided by the user.
func AttackRoute(c Curler, targets []Stream, routes Routes, timeout time.Duration, log bool) ([]Stream, error)
AttackRoute attempts to guess the provided targets' streaming routes using the given dictionary or the default dictionary if none was provided by the user.
Discover scans the target networks and tries to find RTSP streams within them.
targets can be:
- a subnet (e.g.: 172.16.100.0/24) - an IP (e.g.: 172.16.100.10) - a hostname (e.g.: localhost) - a range of IPs (e.g.: 172.16.100.10-20)
ports can be:
- one or multiple ports and port ranges separated by commas (e.g.: 554,8554-8560,18554-28554)
func ValidateStreams(c Curler, targets []Stream, timeout time.Duration, log bool) ([]Stream, error)
ValidateStreams tries to setup the stream to validate whether or not it is available
| Path | Synopsis |
|---|---|
| cameradar |
Package cmrdr imports 12 packages (graph). Updated 2019-04-09. Refresh now. Tools for package owners.