Skip to content

malwaredllc/bamf

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

bamf.py

bamf.py

 
 

requirements.txt

requirements.txt

 
 

Repository files navigation

BAMF

license version

DISCLAIMER: This project should be used for authorized testing and educational purposes only.

BAMF is an open-source tool designed to leverage Shodan (a search engine for the Internet of Things) to discover routers vulnerable to CVE-2013-6026, commonly known as Joel's Backdoor, a severe vulnerability allowing unauthenticated access to the administration panel of many routers made by D-Link, one of the world's largest manufacturers of routers for home and business.

Installation

  1. Download or clone the repository (git clone https://github.com/malwaredllc/bamf)
  2. Install the required Python packages (pip install -r bamf/requirements.txt)
  3. Create a free Shodan account at https://account.shodan.io/register
  4. Configure BAMF to use your Shodan API key (python bamf.py [--shodan API])

Usage

  • Use the search command to search the internet for potential
  • Use the scan command to scan the target routers for backdoors
  • Use the map command to map the networks of devices connected to vulnerable routers
  • Use the targets command to view potential targets discovered this session
  • Use the backdoors command to view routers with a confirmed backdoor
  • Use the devices command to view all devices connected to vulnerable routers

Contact

Email: security@malwared.com

Twitter: twitter

About

A tool which utilizes Shodan to detect vulnerable IoT devices.

Topics

shodan router backdoor pharmer

Resources

Readme

License

GPL-3.0 license
Activity

Stars

334 stars

Watchers

21 watching

Forks

97 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages