{"id":226,"date":"2015-08-22T01:42:29","date_gmt":"2015-08-22T01:42:29","guid":{"rendered":"http:\/\/dahua.evosec.eu\/?page_id=226"},"modified":"2016-09-11T17:47:32","modified_gmt":"2016-09-11T17:47:32","slug":"device-security-assessment","status":"publish","type":"page","link":"https:\/\/dahua.evosec.eu\/pl\/device-security-assessment\/","title":{"rendered":"Urz\u0105dzenia Security Assessment &amp; Egzekwowanie"},"content":{"rendered":"<div><i>Aktualizacja z 25 wrze\u015bnia, 2015<\/i><br \/>\r\nTeraz, mamy zidentyfikowane b\u0142\u0119dy, opracowany patch (b\u0119d\u0105 dost\u0119pne dla wi\u0119kszo\u015bci produkt\u00f3w na bazie DAHUA), a tak\u017ce rozwi\u0105zania do odzyskiwania urz\u0105dzenia w sytuacjach, gdzie:<\/p>\r\n<ul>\r\n<li>Urz\u0105dzenie przestaje odpowiada\u0107, nagrywanie lub nie mo\u017cna uzyska\u0107 dost\u0119pu przez Internet, podczas gdy pod\u0142\u0105czone bezpo\u015brednio lub za po\u015brednictwem protoko\u0142u PPPoE<\/li>\r\n<li>Urz\u0105dzenie nadal rekord\u00f3w, ale nie mo\u017cna uzyska\u0107 do niego dost\u0119p przez Internet<\/li>\r\n<li>Urz\u0105dzenie wy\u015bwietla &#8222;System has been hacked&#8221;, &#8222;Device has been hacked&#8221;, &#8222;DVR has been hacked&#8221; lub innych wiadomo\u015bci i <strong>admin<\/strong> konto ma \u017cadnych praw<\/li>\r\n<\/ul>\r\n<\/div>\r\n<hr \/>\r\n<div><i>Aktualizacja 1 wrze\u015bnia, 2015<\/i><br \/>\r\nMamy opracowane niestandardowe firmware(s) dla starych urz\u0105dze\u0144, kt\u00f3re s\u0105 podatne na telnet(port 23)->root Nazwa u\u017cytkownika ataki(za po\u015brednictwem domy\u015blnej, niezmienne <strong>vizxv<\/strong> has\u0142o). Jeste\u015bmy w stanie dostosowa\u0107\/patch prawie wszystkie stare firmware z bezpieczne has\u0142o, kt\u00f3re podasz.<\/p>\r\n<p>Dlaczego? Poniewa\u017c za pomoc\u0105 root&#038;<strong>vizxv<\/strong> has\u0142o urz\u0105dzenia s\u0105 podatne na danych przecieki (w tym kilka, zwyk\u0142ego tekstu przechowywane po\u015bwiadczenia), usuni\u0119cie, usuni\u0119cie rekordu(\u00f3w) zatrzymanie pracy (przez co najmniej 4 minuty), Zresetowanie konfiguracji ect.<\/p>\r\n<div class=\"panel panel-default\">\r\n<div class=\"panel-heading\">Niekt\u00f3re modele router\u00f3w<\/div>\r\n<div class=\"panel-body\">\r\nDVR0404HE-AN, DVR0404HE-AS, DVR0404HF-AN, DVR0404HF-AS, DVR0404HF-AT, DVR0404HF-U, DVR0404LE-AN, DVR0404LE-AS, DVR0404LF-A, DVR0404LF-AS, DVR0404LF-AST, DVR0404LF-L, DVR0404LF-S, DVR0804HF-U, DVR0804LE-AS, DVR0804LF-A, DVR0804LF-AS, DVR0804LF-AST, DVR0804LF-L, DVR0804LF-S, DVR1604HF-L-E, DVR1604HF-S-E, DVR1604HF-U, DVR1604LE-AS, DVR1604LE-SL, DVR1604LF-A, DVR1604LF-AE, DVR1604LF-AS, DVR1604LF-AST, DVR1604LF-L, DVR1604LF-S, DVR3108H, DVR310XE, DVR3116E, DVR3116H\r\n  <\/div>\r\n<\/div>\r\n<hr \/>\r\n<div>Niekt\u00f3re rejestratory DVR, NVR (i innych wbudowanych zabezpiecze\u0144 lub urz\u0105dze\u0144 monitoruj\u0105cych) mo\u017ce i jest zagro\u017cona przez problemy zabezpiecze\u0144. Dla tych mo\u017cemy zdalnie oceni\u0107 bie\u017c\u0105cego urz\u0105dzenia bezpiecze\u0144stwa i sprawozdanie.\r\n<\/div>\r\n<\/p>\r\n<div><strong>Wskaz\u00f3wka:<\/strong> Ta funkcja jest obecnie w fazie rozwoju.<br \/>\r\nB\u0119dziemy robi\u0107 #pentesting i niekt\u00f3re #hardwarefingerprinting. B\u0119dziemy r\u00f3wnie\u017c u\u017cywa\u0107 wsp\u00f3lnej #CVEs dost\u0119pne i niekt\u00f3re narz\u0119dzia opracowane wewn\u0105trz. W niedalekiej przysz\u0142o\u015bci zaprezentujemy kilka statystyk podatnych urz\u0105dze\u0144.\r\n<\/div>","protected":false},"excerpt":{"rendered":"Aktualizacja z 25 wrze\u015bnia, 2015 Teraz, mamy zidentyfikowane b\u0142\u0119dy, opracowany patch (b\u0119d\u0105 dost\u0119pne dla wi\u0119kszo\u015bci produkt\u00f3w na bazie DAHUA), a tak\u017ce rozwi\u0105zania do odzyskiwania urz\u0105dzenia w sytuacjach, gdzie: Urz\u0105dzenie przestaje odpowiada\u0107, nagrywanie lub nie mo\u017cna uzyska\u0107 dost\u0119pu przez Internet, podczas gdy pod\u0142\u0105czone bezpo\u015brednio lub za po\u015brednictwem protoko\u0142u PPPoE Urz\u0105dzenie nadal rekord\u00f3w, ale nie mo\u017cna uzyska\u0107&hellip; <a class=\"more-link\" href=\"https:\/\/dahua.evosec.eu\/pl\/device-security-assessment\/\">Continue Reading Urz\u0105dzenia Security Assessment &amp; Egzekwowanie<\/a>","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-226","page","type-page","status-publish","hentry"],"translation":{"provider":"WPGlobus","version":"3.0.1","language":"pl","enabled_languages":["en","da","de","es","fi","fr","it","hu","nl","no","pt","pl","ru","sv","ja"],"languages":{"en":{"title":true,"content":true,"excerpt":false},"da":{"title":true,"content":true,"excerpt":false},"de":{"title":true,"content":true,"excerpt":false},"es":{"title":true,"content":true,"excerpt":false},"fi":{"title":true,"content":true,"excerpt":false},"fr":{"title":true,"content":true,"excerpt":false},"it":{"title":true,"content":true,"excerpt":false},"hu":{"title":true,"content":true,"excerpt":false},"nl":{"title":true,"content":true,"excerpt":false},"no":{"title":true,"content":true,"excerpt":false},"pt":{"title":true,"content":true,"excerpt":false},"pl":{"title":true,"content":true,"excerpt":false},"ru":{"title":true,"content":true,"excerpt":false},"sv":{"title":true,"content":true,"excerpt":false},"ja":{"title":false,"content":false,"excerpt":false}}},"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Urz\u0105dzenia Security Assessment &amp; Egzekwowanie - Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/\" \/>\n<meta property=\"og:locale\" content=\"pl_PL\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Urz\u0105dzenia Security Assessment &amp; Egzekwowanie - Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA\" \/>\n<meta property=\"og:url\" content=\"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/\" \/>\n<meta property=\"og:site_name\" content=\"Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/euroevosolutions\" \/>\n<meta property=\"article:modified_time\" content=\"2016-09-11T17:47:32+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@evosec_eu\" \/>\n<meta name=\"twitter:label1\" content=\"Szacowany czas czytania\" \/>\n\t<meta name=\"twitter:data1\" content=\"22 minuty\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/dahua.evosec.eu\\\/hu\\\/device-security-assessment\\\/\",\"url\":\"https:\\\/\\\/dahua.evosec.eu\\\/hu\\\/device-security-assessment\\\/\",\"name\":\"Urz\u0105dzenia Security Assessment &amp; Egzekwowanie - Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/dahua.evosec.eu\\\/#website\"},\"datePublished\":\"2015-08-22T01:42:29+00:00\",\"dateModified\":\"2016-09-11T17:47:32+00:00\",\"description\":\"\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/dahua.evosec.eu\\\/hu\\\/device-security-assessment\\\/#breadcrumb\"},\"inLanguage\":\"pl-PL\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/dahua.evosec.eu\\\/hu\\\/device-security-assessment\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/dahua.evosec.eu\\\/hu\\\/device-security-assessment\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/dahua.evosec.eu\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"K\u00e9sz\u00fcl\u00e9k Biztons\u00e1gi \u00e9rt\u00e9kel\u00e9si &amp; V\u00e9grehajt\u00e1si\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/dahua.evosec.eu\\\/#website\",\"url\":\"https:\\\/\\\/dahua.evosec.eu\\\/\",\"name\":\"Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA\",\"description\":\"Jeste\u015bmy firm\u0105 do\u015bwiadczonych w produktach DAHUA Strona\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/dahua.evosec.eu\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"pl-PL\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Urz\u0105dzenia Security Assessment &amp; Egzekwowanie - Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/","og_locale":"pl_PL","og_type":"article","og_title":"Urz\u0105dzenia Security Assessment &amp; Egzekwowanie - Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA","og_url":"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/","og_site_name":"Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA","article_publisher":"https:\/\/www.facebook.com\/euroevosolutions","article_modified_time":"2016-09-11T17:47:32+00:00","twitter_card":"summary_large_image","twitter_site":"@evosec_eu","twitter_misc":{"Szacowany czas czytania":"22 minuty"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/","url":"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/","name":"Urz\u0105dzenia Security Assessment &amp; Egzekwowanie - Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA","isPartOf":{"@id":"https:\/\/dahua.evosec.eu\/#website"},"datePublished":"2015-08-22T01:42:29+00:00","dateModified":"2016-09-11T17:47:32+00:00","description":"","breadcrumb":{"@id":"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/#breadcrumb"},"inLanguage":"pl-PL","potentialAction":[{"@type":"ReadAction","target":["https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/dahua.evosec.eu\/hu\/device-security-assessment\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/dahua.evosec.eu\/"},{"@type":"ListItem","position":2,"name":"K\u00e9sz\u00fcl\u00e9k Biztons\u00e1gi \u00e9rt\u00e9kel\u00e9si &amp; V\u00e9grehajt\u00e1si"}]},{"@type":"WebSite","@id":"https:\/\/dahua.evosec.eu\/#website","url":"https:\/\/dahua.evosec.eu\/","name":"Pomoc techniczn\u0105 dla produkt\u00f3w DAHUA","description":"Jeste\u015bmy firm\u0105 do\u015bwiadczonych w produktach DAHUA Strona","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/dahua.evosec.eu\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"pl-PL"}]}},"_links":{"self":[{"href":"https:\/\/dahua.evosec.eu\/pl\/wp-json\/wp\/v2\/pages\/226","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dahua.evosec.eu\/pl\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/dahua.evosec.eu\/pl\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/dahua.evosec.eu\/pl\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dahua.evosec.eu\/pl\/wp-json\/wp\/v2\/comments?post=226"}],"version-history":[{"count":0,"href":"https:\/\/dahua.evosec.eu\/pl\/wp-json\/wp\/v2\/pages\/226\/revisions"}],"wp:attachment":[{"href":"https:\/\/dahua.evosec.eu\/pl\/wp-json\/wp\/v2\/media?parent=226"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}