Penting!

Port apa saja yang terbuka pada ONVIF Camera?

$ nmap -p 1-65535 -v 192.168.1.4
Starting Nmap 7.40 ( https://nmap.org ) at 2018-05-14 03:18 SE Asia Standard Time
Initiating ARP Ping Scan at 03:18
Scanning 192.168.1.4 [1 port]
Completed ARP Ping Scan at 03:18, 1.58s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 03:18
Completed Parallel DNS resolution of 1 host. at 03:18, 0.05s elapsed
Initiating SYN Stealth Scan at 03:18
Scanning 192.168.1.4 (192.168.1.4) [65535 ports]
Discovered open port 554/tcp on 192.168.1.4
Discovered open port 5000/tcp on 192.168.1.4
Completed SYN Stealth Scan at 03:19, 21.21s elapsed (65535 total ports)
Nmap scan report for 192.168.1.4 (192.168.1.4)
Host is up (0.015s latency).
Not shown: 65533 closed ports
PORT     STATE SERVICE
554/tcp  open  rtsp
5000/tcp open  upnp
MAC Address: 4A:4C:5C:E8:5E:08 (Unknown)

Read data files from: C:\Program Files (x86)\Nmap
Nmap done: 1 IP address (1 host up) scanned in 30.20 seconds
           Raw packets sent: 65557 (2.884MB) | Rcvd: 68396 (2.736MB)

$ nmap -A 192.168.1.4

Starting Nmap 7.40 ( https://nmap.org ) at 2018-05-14 03:48 SE Asia Standard Time
Nmap scan report for 192.168.1.4 (192.168.1.4)
Host is up (0.020s latency).
Not shown: 998 closed ports
PORT     STATE SERVICE VERSION
554/tcp  open  rtsp?
|_rtsp-methods: OPTIONS, DESCRIBE, SETUP, TEARDOWN, PLAY, PAUSE, GET_PARAMETER, SET_PARAMETER,USER_CMD_SET
5000/tcp open  soap    gSOAP 2.8
|_http-server-header: gSOAP/2.8
|_http-title: Site doesn't have a title (text/xml; charset=utf-8).
MAC Address: 4A:4C:5C:E8:5E:08 (Unknown)
Device type: general purpose
Running: Linux 2.6.X|3.X
OS CPE: cpe:/o:linux:linux_kernel:2.6 cpe:/o:linux:linux_kernel:3
OS details: Linux 2.6.32 - 3.10
Network Distance: 1 hop

TRACEROUTE
HOP RTT      ADDRESS
1   20.08 ms 192.168.1.4 (192.168.1.4)

OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 163.74 seconds

Apa itu protokol RSTP dan UPNP?

RSTP (Rapid Spanning Tree Protocol)

The Spanning Tree Protocol (STP) is a network protocol that builds a loop-free logical topology for Ethernet networks. The basic function of STP is to prevent bridge loops and the broadcast radiation that results from them. Spanning tree also allows a network design to include backup links to provide fault tolerance if an active link fails. [src]

In 2001, the IEEE introduced Rapid Spanning Tree Protocol (RSTP) as 802.1w. RSTP provides significantly faster spanning tree convergence after a topology change, introducing new convergence behaviors and bridge port roles to do this. RSTP was designed to be backwards-compatible with standard STP.

While STP can take 30 to 50 seconds to respond to a topology change, RSTP is typically able to respond to changes within 3 × Hello times (default: 3 times 2 seconds) or within a few milliseconds of a physical link failure. The Hello time is an important and configurable time interval that is used by RSTP for several purposes; its default value is 2 seconds. [src]

UPNP (Universal Plug and Play)

Universal Plug and Play (UPnP) is a set of networking protocols that permits networked devices, such as personal computers, printers, Internet gateways, Wi-Fi access points and mobile devices to seamlessly discover each other's presence on the network and establish functional network services for data sharing, communications, and entertainment. UPnP is intended primarily for residential networks without enterprise-class devices. [src]

Klien apa saja yang bisa digunakan untuk terhubung dengan kamera ONVIF?

ONVIF Device Manager

Pilih opsi Live video untuk melihat apa yang sedang direkam oleh kamera. Bawaan pabrik, kamera ONVIF ini tidak menggunakan otentikasi.

Bagaimana kondisi kamera ONVIF pada Shodan? Apakah cukup lemah dan menjadi target para peretas?

Untuk mencari device ONVIF bisa menggunakan kata kunci onvif pada kolom pencarian shodan. Kamera ONVIF biasa menggunakan SOAP dengan indikator dibawah ini.

results matching ""

    No results matching ""