Created by: ATHEX BL4CK H4T
Pakistani Cyber Security Researcher | Web Developer | Security Expert
- Overview
- Features
- Installation
- Quick Start
- Tool Components
- Detailed Usage
- Modules Explained
- Configuration
- Output Structure
- Supported Cameras
- Ethical Guidelines
- Troubleshooting
- Legal Disclaimer
AutoCCTVPenTest Toolkit is a comprehensive, automated security assessment framework designed for authorized penetration testing of CCTV/IP camera systems. It provides a complete suite of tools for discovering, analyzing, and reporting vulnerabilities in surveillance infrastructure.
- 🔎 Discovers CCTV devices on networks
- 🎯 Identifies camera manufacturers (Hikvision, Dahua, Axis, etc.)
- 🔓 Tests for default credentials and weak passwords
- 📡 Finds and captures RTSP video streams
⚠️ Detects known vulnerabilities (CVEs)- 📊 Generates professional HTML reports
- 🎨 Features animated terminal interface
- ❌ Perform illegal surveillance
- ❌ Attack systems without permission
- ❌ Steal or distribute footage
- ❌ Cause damage to equipment
| Feature | Description |
|---|---|
| Network Discovery | Fast port scanning for CCTV-specific ports (80, 443, 554, 37777, etc.) |
| Service Fingerprinting | Identifies CCTV brands and models |
| Vulnerability Scanner | Checks for known CVE exploits |
| Credential Attacks | Tests default passwords and brute forces logins |
| RTSP Stream Hunter | Discovers and tests RTSP video streams |
| Live Stream Capture | Records accessible video feeds |
| Config Extraction | Downloads configuration files from compromised devices |
| HTML Reporting | Generates professional penetration test reports |
- Matrix digital rain
- CCTV camera sweep animation
- Hacking terminal simulation
- Progress spinners and bars
- Explosion/glitch effects
- Typewriter text effects
- Security shield animation
- OS: Linux (Kali Linux, Ubuntu, Debian, Parrot OS recommended)
- RAM: Minimum 2GB (4GB+ recommended)
- Disk: 500MB free space
- Network: LAN access for scanning
git clone https://github.com/Athexblackhat/CCTV.git
cd CCTV
chmod +x *.sh
sudo apt update
sudo apt install -y nmap curl ffmpeg python3 python3-pip openssl
sudo apt install -y hydra nikto whatweb dirb masscan parallel
pip3 install requests urllib3 colorama bs4
./run.sh
Network discovery
Service fingerprinting
Vulnerability scanning
Credential attacks
RTSP stream hunting
Configuration extraction
Report generation
Executive Summary:
- Systems Found: 12
- Credentials: 3
- Streams: 5
- Vulnerabilities: 8
Discovered Systems: • 192.168.1.10 - Hikvision DS-2CD2032 • 192.168.1.11 - Dahua IPC-HFW4300S
Found Credentials: • 192.168.1.10:80:admin:12345 (Default) • 192.168.1.11:80:admin:admin (Default)
Accessible Streams: • rtsp://192.168.1.10:554/stream1 • rtsp://admin:12345@192.168.1.10:554/main
Vulnerabilities Found: • CVE-2017-7921 on 192.168.1.10:80 • Default credentials on 192.168.1.11:80
This tool is provided for EDUCATIONAL and AUTHORIZED SECURITY TESTING purposes only.
By using this software, you agree to:
- Use only on systems you own or have explicit permission to test
- Comply with all applicable laws and regulations
- Accept full responsibility for your actions
- Not use for any illegal activities
The author (ATHEX BL4CK H4T) assumes no liability for:
- Misuse of this tool
- Damage caused by unauthorized testing
- Violation of laws or regulations
- Any legal consequences resulting from use
UNAUTHORIZED ACCESS TO COMPUTER SYSTEMS IS ILLEGAL. This tool is designed for security professionals and researchers to improve the security of their own systems.
Version Changes 4.0 Ultimate Edition - Added animations, improved detection, enhanced reporting 3.0 Added RTSP stream capture, configuration extraction 2.0 Added vulnerability scanning, credential attacks 1.0 Initial release with basic discovery