bp2008/HikPasswordHelper

Stars
214
Rank 183,827 (Top 4 %)
Language
C#
License
The Unlicense
Created about 7 years ago
Updated almost 5 years ago

bp2008/HikPasswordHelper

bp2008

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A tool which exploits a backdoor in Hikvision camera firmwares circa 2014-2016 to help the owner change a forgotten password.

HikPasswordHelper

A tool which exploits a backdoor in Hikvision camera firmwares circa 2014-2016 (ICSA-17-124-01) to help the owner change a forgotten password.

Usage

Download HikvisionPasswordResetHelper.exe from the releases tab and run the exe.

There are 5 simple steps to reset a password, and you can even skip steps 3 and 4 in many cases.

Requirements

.NET Framework 4.5.2 - This is included in any modern Windows installation.

A Hikvision device that is vulnerable to ICSA-17-124-01.

Here is an incomplete list of camera firmwares that have been reported to be vulnerable or not. This list is compiled from various sources and the camera models are unspecified. Some camera models are reportedly vulnerable at different ranges of firmware versions, so I would not put complete faith in the accuracy of this list for all camera models.

Hikvision Camera Firmware Versions

- V5.1.6 build 140412 - NOT Vulnerable (to ICSA-17-124-01)  
+ V5.2.0 build 140721 - Vulnerable  
+ V5.2.0 build 141016 - Vulnerable  
+ V5.3.0 build 150513 - Vulnerable  
+ V5.3.3 build 150514 - Vulnerable  
+ V5.3.6 build 151105 - Vulnerable  
+ V5.3.8 build 151224 - Vulnerable  
+ V5.3.5 build 161112 - Vulnerable  
+ V5.4.0 build 160401 - Vulnerable  
+ V5.4.0 build 160520 - Vulnerable  
+ V5.4.1 build 160525 - Vulnerable  
+ V5.4.0 build 160530 - Vulnerable  
+ V5.4.3 build 160705 - Vulnerable  
+ V5.4.3 build 160808 - Vulnerable  
+ V5.4.4 build 161125 - Vulnerable  
+ V5.3.9 build 170109 - Vulnerable  
- V5.4.3 build 170123 - NOT Vulnerable  
- V5.4.5 Build 170123 - NOT Vulnerable  
- V5.4.3 build 170217 - NOT Vulnerable

Special Thanks

This tool was make possible thanks to the efforts of user montecrypto from the ipcamtalk forum.

https://ipcamtalk.com/threads/backdoor-found-in-hikvision-cameras.17523/

See Also

If your firmware is too old to use this method to reset a lost password, you can try the reset code method:

https://ipcamtalk.com/threads/hikvision-camera-admin-password-reset-tool.2837/

If your firmware is too new, then I'm afraid you are out of luck because the reset code method won't work either.

BetterClearTypeTuner

A better way to configure ClearType font smoothing on Windows 10.

pingtracer

Ping Tracer continuously pings each network host between your computer and a given destination, helping identify the source of connectivity problems.

ui3

A powerful, modern HTML5 web interface for Blue Iris.

DahuaLoginBypass

Chrome extension that uses vulnerabilities CVE-2021-33044 and CVE-2021-33045 to log in to Dahua cameras without authentication.

cameraproxy

A Windows Service which acts as a "smart" proxy for IP network cameras. Uses the .NET framework and parts of the VLC media player libraries.

HdmiExtender

Captures the output of a Lenkeng LKV373 HDMI Extender TX (Sender) device, making the audio and video streams usable by 3rd party media players.

biupdatehelper

A Windows service which helps manage Blue Iris updates

SSL-Certificate-Maker

A graphical tool for generating SSL certificates without any prior knowledge.

blueirisviewer

A Java application which can be used to view cameras hosted by Blue Iris

DahuaSunriseSunset

A Windows Service which changes the profile of dahua cameras between Night and Day at each sunset and sunrise.

IPScanner

IP address scanner written in C#

ui2

A custom web interface for Blue Iris Video Security Software

x264net

.NET wrapper for x264, written in C++/CLI and usable from C# and VB.NET

MapStitcher

A simple program to bulk-download map tiles and stitch them together.

SelfHostedRemoteDesktop

Incomplete, non-functional

WebProxy

An HTTP(S) reverse proxy server with web-based configuration.

pnacl_player

(obsolete) H.264 video player using Chrome's portable native client (pluginless native code in Chrome)

OmxPlayerAuto

A .net/mono project designed for Raspberry Pi which enables basic remote management of omxplayer instances for the creation of a video wall.

MonitorControl

A small Windows program that allows control of the local monitors via HTTP.

BPUtil

Utility classes for .net projects

IpCameraSpeedometer

Approximates the speed of moving objects using an IP camera.

CertTrustManager

A simple Windows program which can hold an embedded SSL/TLS certificate (.cer file) and provides a button to trust or untrust that certificate.

MatrixPortalClock

Clock software for Adafruit Matrix Portal M4. Uses MQTT to synchronize time and load custom text which is displayed on two scrolling lines below the clockface.

AcuRiteSniffer

Reads weather data packets sent by AcuRite SmartHUBs and makes the data accessible locally. Requires that the network be configured to mirror packets to the computer running this service.

IPMonitor

A tool to organize and monitor your IP network.

SmartPing

A slightly improved version of the Ping class from .NET Core.

turbojpegCLI

.NET wrapper for the libjpeg-turbo library

DahuaPictureOverlay

Converts an image into a 256 color bmp with a max resolution of 128x128 pixels and max size of 16 KiB, as required for Dahua cameras with the Picture Overlay feature.

DahuaPTZControl

WindowsServerMonitor

A small windows service which can monitor and graph performance counters remotely.

BlueIrisPerformanceAdvisor

A tool which helps you improve the performance of Blue Iris 5 by analyzing your configuration.

timelapse

An ASP.NET web application that organizes, archives, and makes available photos from FTP-capable IP cameras.

GofancoHDMI

A simple Windows Service with an embedded web server that assists in controlling a Gofanco PRO-Matrix44-SC (4x4 HDMI matrix) over HTTP.

BandwidthMonitor

A windows service which talks to my router to monitor internet bandwidth usage of every device on the network.

LetsEncryptManager

A Windows Service which creates and renews certificates provided by LetsEncrypt

HotkeyAutomation

Trigger web services using a keyboard and raspberry pi.

SplitIntoMonthlyFolders

A simple program which moves files into folders named for the date the file was last modified (YYYY_MM).

ImageOrganizer

Organizes a folder full of images by copying or moving them into a date-based directory structure.

PhotoFrameServer

NS2MappingHelper

CommunityDKPBidHistory

A searchable web interface for bid history from MonolithDKP.

GeolocationWebService

A simple web service that provides IP address location information using free data sources

Amazon-Product-Link-Shortener

A chrome extension which creates a short and clean link to the current amazon.com product page, for easy sharing.

JsonDataExtractor

A Windows Service that can query a web service for JSON data and write parts of the data to text files.

AmazonCustomerImageEnlarger

A Userscript which enlarges the customer image gallery on amazon.com to make it fill most of the browser's viewport.

ui2service

ErrorTracker

A light-weight event/error tracking service written in C#

PdfScriptRemover

Removes JavaScript and embedded files from PDFs, powered by iText 7 for .NET

BlueIrisWebserverExtensions

A small Windows Service that acts as a reverse proxy to the Blue Iris web server, providing HTTPS (SSL/TLS) support and more.

EnhancePointerPrecisionFixer

A system tray application for Windows that manages the "Enhance Pointer Precision" setting.

UbuntuServerSetup

RdpCalc

Helps generate a .rdp file that positions the Remote Desktop window where it will fill a monitor on Windows.

NetworkSpeedTest

A web-based speed test application suitable for LAN or internet speed tests.

HikvisionThermalDpcClear

A utility that assists in clearing all defective pixel markings on a Hikvision Thermal-Optical camera.

SetNetworkCategory

Lists the Network adapters on Windows and allows you to see and set the firewall category of each between "Public", "Private", and "Domain" modes.