Cameradar Versions Save

New default credentials

• Add new default credentials
  • #304 by @supremepot
  • #295 by @ArturFormella
• Update install instructions #291 by @Ullaakut

• Update curl-dev dependency version
• Add crossplatform docker builds
• Update README to warn about binary builds and curl version

Features

• Support multi-route detection (#264)
  • Change stream model to support multiple routes
  • Simplify attack algorithm
  • Use dummy route to detect cameras which accept all routes
• Set module version to v5 (#265)
  • Update README to reflect changes
  • Various README improvements

Bugfixes

• Fix stream discovery on non-standard ports by using service info mode in nmap scan (#266)
• No longer enables debug by default
• Makes verbose mode work (used to not do anything)

Misc

• Move issue template to .github and remove old changelog file
• Reword error message when no stream is found
• Remove unnecessary import alias

• Add routes and credentials for Besder IP cameras (#256)
• Remove spam from curl verbose mode (#257)

• Digest authentication is fixed by using an older curl version (#252)

v4.1.1 (2019-11-30)

All Commits

Enhancements:

• [binary,enhancement,library] Add scan interval option (#245 by Ullaakut)
• [enhancement] Update dictionaries & dependencies for dictionary fetch tool (#240 by Ullaakut)

Bug fixes:

• [bug] Update nmap dependency to v2.0.0 (#250 by Ullaakut)
• [bug] Fix scan interval option (#246 by Ullaakut)
• [bug] Fix capitalization issues in import path (#244 by Ullaakut)

Misc:

• Add libcurl requirement to build from binary (#249 by Ullaakut)
• Remove goreleaser (#232 by Ullaakut)

Improvements and features

• Cameradar can now access cameras with both basic and digest authentication methods
  • Previously, only basic auth was supported due to 90% of cameras using it over digest
• A tool to automatically update the route dictionary has been added to the repository
• The Cameradar API is now much simpler to use (#209)
• UX has been improved
  • Spinner removed (#211)
  • Better logs using disgo
  • Two new verbosity levels: debug being the default and verbose showing extra logs for each curl request
• Unit tests are now consistent (#210)
• End to end tests in CI are now more reliable
  • Added custom routes
  • Added a second camera
  • Added two authentication methods in tests

Removed unmaintained documentation

• Contributing guide has been removed. It was very outdated and considering the low amount of contributions at the moment (🙁) I don't think it's worth the maintenance cost
• Documentation of the library in the readme was removed in favor of godoc. AFAIK no one uses cameradar as a library at the moment so I don't think it was necessary for it to be such a focus of the readme file.

Cameradar API

In the 3.0.0 version, the API of the cameradar API forces you to:

• Initialize, manipulate and clean a curl handle
• Call 5 or 6 functions from the library, with 4 to 6 arguments each, to perform a complete scan and attack process
• Print your own summary of the attack

In the 4.0.0 version, instead, you create a cameradar.Scanner, pass it the options you want, and then simply call Scan, Attack and PrintStreams on it. It is much more intuitive, clean and simple. The logic of the order in which to attack and many other things were moved from the client side to the API side.

User Experience

The new interface is cleaner, provides a better picture of what is going on during the attack process and keeps the same attack summary as the previous interface has.

Its debug and verbose mode are significantly more readable than the previous --log mode.

Thanks

Thanks to @rikosintie for his issue about digest authentication (#199)

Bugfixes

• Fixes a bug where the CAMERADAR_CUSTOM_CREDENTIALS and CAMERADAR_CUSTOM_ROUTES environment variables were no longer used, in favor of CAMERADAR_CUSTOM-CREDENTIALS and CAMERADAR_CUSTOM-ROUTES because of a regression introduced in v3.0.0. (#189)
• Fixes a bug where it was impossible to override the default dictionaries using the docker image. (#189)

Enhancements

• The cameradar library is now more intuitive and easier to use by removing useless arguments from the Discover method
• Added more routes and credentials to the dictionaries #185
• Cameradar scans one more port by default (5554) #186
• Cameradar uses nmap to improve error handling, make cameradar faster and easier to read #187
• Removed legacy code #187
• Finally reached 100% test coverage by completely mocking nmap #187

Disclaimer

This wasn't originally supposed to trigger a major release, but due to the refactors that became obvious once the old implementation of the discovery was improved, I had to make a few breaking changes to the cameradar library.

I don't think any developers use it, so I guess it isn't a big deal, but just in case, I'll bump up the major version.