Skip to content

tothi/hs-dvr-telnet

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
February 6, 2020 11:14
February 5, 2020 02:29
February 5, 2020 02:29

hs-dvr-telnet.py

Python implementation using a slightly modified 3DES algorithm for opening telnet interface on HiSilicon DVR devices with advanced (encrypted) command parser.

Co-work with Vladislav Yarmak (@snawoot).

Detailed analysis of this 0day backdoor by Vladislav is here:

https://habr.com/en/post/486856/

Recommended usage of this PoC:

git clone https://github.com/tothi/hs-dvr-telnet
cd hs-dvr-telnet
python -m venv venv
. ./venv/bin/activate
pip install -r requirements.txt
./hs-dvr-telnet.py

vendor(?) reply

Huawei/HiSilicon released a "this is not ours" Security Notice about the backdoor.

At the moment, it seems the affected part of the firmware is related to an OEM vendor (what is most likely Hangzhou Xiongmai Technology).

About

open telnet port on modern HiSilicon devices

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages