CCTV

16 Free CCTV Pentesting Tools To Test Your CCTV Cameras and Feeds Security

Hazem Abbas

Oct 12, 2024 — 10 min read

Photo by Tobias Tullius / Unsplash

While there are many commercial and open-source CCTV systems available for home and business security, many people are unaware that these systems also require security testing. This is crucial to ensure that no unauthorized users have logged in or are accessing unsecured CCTV camera feeds.

The primary issue is that many IP cameras and CCTV and NVR systems are installed with default settings and insecure configurations.

In this post, we’ve compiled a list of tools that can help you, as well as security experts and professional pentesters, test the security of your CCTV systems.

DISCLAIMER: All the information here is presented for educational purposes and to be used only with permission on devices and networks you own and control.

1- Cam-Hackers

Cam Hackers allows users to test and scan Live open CCTV cameras in many countries. It is written using Python.

Note that it is created for educational purposes.

Cam Hackers uses Insecam.org.

2- Camerattack

Cameraattack is an open-source attack tool designed to remotely disable CCTV camera streams (like in spy movies).

3- Cam Finder

This is a powerful open-source tool designed for pentesters and security enthusiasts to locate and identify IP cameras. This Python-based script can scan specific IP ranges to detect live cameras, making it an essential utility for assessing surveillance system vulnerabilities or discovering unsecured devices.

It offers a quick and efficient way to gather valuable information about network-connected cameras, enhancing your security auditing capabilities.

4- Psychic CCTV

Psychic CCTV is an open-source tool that helps you find vulnerable IP cameras on the internet. It's designed for security testing, allowing users to scan networks and identify cameras that may be exposed or poorly secured.

5- Vailyn

Vailyn is a multi-phased vulnerability analysis and exploitation tool for path traversal and file inclusion vulnerabilities. It is built to make it as performant as possible, and to offer a wide arsenal of filter evasion techniques.

6- camcheckr

Camcheckr is a reconnaissance tool designed for testing the security of webcams. Using this Python script, you can scan a specific URL or IP address to gather important information about the camera, including its default password and potential vulnerabilities

7- CamMander (CVE-2013-1599)

This is yet another free and open-source exploit toolkit for old IP cameras. Inspired by Black Hat 2013 - Exploiting Network Surveillance Cameras Like a Hollywood Hacker

8- SearchCAM

SearchCAM is a free open-source tool that helps you easily find unsecured IP cameras online. Ideal for pentesters and security researchers, SearchCAM scans the web for exposed cameras and provides quick access to live camera feeds that may be vulnerable to unauthorized access.

9- Cansleep

Cansleep is an educational tool designed to analyze and assess the functionality and security of urban surveillance cameras, DVRs, and RTSP video streams. It helps students, researchers, and security professionals learn about video surveillance systems and their security challenges.

It can be installed on Linux, Windows and macOS.

10- ONVIF IP Camera security Testing (OCST)

This tool is a set of test suite for testing a set of attacks against ONVIF IP cameras.

It's based on pytest for the test framework and on OTGv4 (OWASP Testing Guide 4) for tests.

11- Wi-Fi Camera Hacking

This repo is a collection of scripts and tools created by Elastic to explore and test security vulnerabilities in network-connected cameras. It allows security researchers and enthusiasts to study potential weaknesses in camera systems and understand how these devices can be exploited.

The tools are educational, helping users learn more about securing surveillance infrastructure.

12- Vulscan

Vulscan is a module which enhances nmap to a vulnerability scanner. The nmap option -sV enables version detection per service which is used to determine potential flaws according to the identified product. The data is looked up in an offline version of VulDB.

13- Ingram WebCam Vulnerability Scanner

This is a web camera device vulnerability scanning tool, which already supports Hikvision, Dahua and other devices. It is built to run on Linux and macOS.

14- Cameradar

Cameradar is an open-source tool that lets you scan, access, and exploit unsecured RTSP cameras. It quickly detects vulnerable cameras, retrieves their credentials, and provides ways to access their video feeds. Cameradar is perfect for security researchers and pentesters looking to test the security of network cameras.

It also can be installed using Docer.

15- NMAP

Nmap is a popular open-source network scanning tool used for network discovery and security auditing. It allows users to identify devices, open ports, and services running on a network, as well as detect potential vulnerabilities. Nmap is widely used by security professionals and network administrators to assess the security of systems and networks.

Nmap can be used to check for vulnerabilities in CCTV and IP cameras. By scanning the network where the cameras are connected, Nmap can help identify:

Open ports (e.g., RTSP or HTTP) that the cameras are using.
The services and versions running on the cameras.
Potential vulnerabilities (e.g., outdated firmware or default credentials).

Additionally, Nmap can be enhanced with specific Nmap Scripting Engine (NSE) scripts that target common vulnerabilities in IP cameras, making it an effective tool for assessing camera security.

16- ReoSploit

The ReoSploit is an open-source penetration testing framework designed to identify and exploit vulnerabilities in various devices, including IoT devices like CCTV cameras. Built for security researchers and pentesters, ReoSploit automates the process of discovering vulnerabilities and exploits, making it easier to assess the security of network-connected devices.

Features:

Automated Vulnerability Scanning: Quickly scans for common vulnerabilities in devices, including CCTV cameras.
Exploitation Framework: Includes tools to exploit identified vulnerabilities in targeted systems.
Custom Exploit Support: Users can create and add their own exploits.
Extensive Device Support: Capable of scanning a wide range of IoT devices, not just cameras.

How to Use ReoSploit for CCTV Vulnerabilities:

ReoSploit can be used to scan a network for CCTV cameras, identify open ports (such as RTSP and HTTP), and exploit known vulnerabilities in camera systems. It can help identify weak spots like default credentials, outdated firmware, and unsecured access points, making it a useful tool for testing CCTV camera security.