aploch
New Around Here
Hello, I have a cheap Chinese DVR for my security cameras that is sending every frame up to a server in the "clouds". nmap shows no open ports on the device, and I recently saw a lot of UDP traffic using Microsoft Message Analyzer when using their proprietary Windows app to monitor my cameras.
My ultimate goal is to intercept these frames somehow and re-serve them up using a standard like rtsp or something. One intermediary goal is to gain remote access to this DVR (they usually have ports 22, 23, and/or 80 open, but not this one). I don't want to digress too much, but if you're interested more in the actual details of that, I have a post on CCTV forums with more details...
Anywho... I'm wondering about a few things:
1) Is there more information I could readily access and analyze if I logged network information through the router it's using to talk to their servers?
2) Can Merlin dump this information out to a log (TCP, UDP, including [multi|uni|*]cast packets)?
3) Can SSL/HTTPS be analyzed unencrypted somehow (assuming they're using SSL - I assume I can't see the details)?
If the answer #1 is yes but #2 is no, is there an alternative firmware that someone could recommend?
This would likely be a very short term test (a few minutes, at most) with only the one client on the network - so hardware-resource-wise this isn't an issue (I don't think). I would use an extra RT-AC3100 I have laying around for the testing.
Thank you
-Adam
My ultimate goal is to intercept these frames somehow and re-serve them up using a standard like rtsp or something. One intermediary goal is to gain remote access to this DVR (they usually have ports 22, 23, and/or 80 open, but not this one). I don't want to digress too much, but if you're interested more in the actual details of that, I have a post on CCTV forums with more details...
Anywho... I'm wondering about a few things:
1) Is there more information I could readily access and analyze if I logged network information through the router it's using to talk to their servers?
2) Can Merlin dump this information out to a log (TCP, UDP, including [multi|uni|*]cast packets)?
3) Can SSL/HTTPS be analyzed unencrypted somehow (assuming they're using SSL - I assume I can't see the details)?
If the answer #1 is yes but #2 is no, is there an alternative firmware that someone could recommend?
This would likely be a very short term test (a few minutes, at most) with only the one client on the network - so hardware-resource-wise this isn't an issue (I don't think). I would use an extra RT-AC3100 I have laying around for the testing.
Thank you
-Adam
Last edited: