{"id":13582624,"url":"https://github.com/woj-ciech/Kamerka-GUI","last_synced_at":"2025-04-06T14:31:12.679Z","repository":{"id":40392840,"uuid":"220044607","full_name":"woj-ciech/Kamerka-GUI","owner":"woj-ciech","description":"Ultimate Internet of Things/Industrial Control Systems reconnaissance tool.","archived":false,"fork":false,"pushed_at":"2023-05-22T22:32:14.000Z","size":32304,"stargazers_count":747,"open_issues_count":7,"forks_count":130,"subscribers_count":23,"default_branch":"master","last_synced_at":"2025-03-29T11:12:42.992Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"HTML","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/woj-ciech.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2019-11-06T16:44:25.000Z","updated_at":"2025-03-26T10:29:12.000Z","dependencies_parsed_at":"2024-01-20T22:49:40.431Z","dependency_job_id":null,"html_url":"https://github.com/woj-ciech/Kamerka-GUI","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/woj-ciech%2FKamerka-GUI","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/woj-ciech%2FKamerka-GUI/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/woj-ciech%2FKamerka-GUI/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/woj-ciech%2FKamerka-GUI/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/woj-ciech","download_url":"https://codeload.github.com/woj-ciech/Kamerka-GUI/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247495806,"owners_count":20948110,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-01T15:02:53.583Z","updated_at":"2025-04-06T14:31:07.667Z","avatar_url":"https://github.com/woj-ciech.png","language":"HTML","funding_links":[],"categories":["HTML","Credits","📦 Legacy \u0026 Inactive Projects"],"sub_categories":["Advanced Queries"],"readme":"# ꓘamerka GUI\n\n## Ultimate Internet of Things/Industrial Control Systems reconnaissance tool.\n\n\u003cp align=\"center\"\u003e\u003cimg src=\"https://www.offensiveosint.io/content/images/2020/07/OffensiveOsint-logo-RGB-2.png\" alt=\"logo\" width=\"200\"/\u003e\u003c/p\u003e\n\n### Powered by Shodan - Supported by Binary Edge \u0026 WhoisXMLAPI\n\n## NSA and CISA Recommend Immediate Actions to Reduce Exposure Across Operational Technologies and Control Systems\n\n\u003e Shodan, Kamerka, are creating a “perfect storm” of \n\u003e \n\u003e 1) easy access to unsecured assets, \n\u003e \n\u003e 2) use of common, open-source information about devices, and \n\u003e \n\u003e 3) an extensive list of exploits deployable via common exploit frameworks (e.g., Metasploit, Core Impact, and Immunity Canvas).\n\nhttps://us-cert.cisa.gov/ncas/alerts/aa20-205a\n\n## Usage\n\n#### 1. Scan for Internet facing Industrial Control Systems, Medical and Internet of Things devices based on country or coordinates.\n#### 2. Gather passive intelligence from WHOISXML, BinaryEdge and Shodan or active by scanning target directly.\n#### 3. Thanks to indicators from devices and google maps, pinpoit device to specific place or facility (hospital, wastewater treatment plant, gas station, university, etc.)\n#### 4. (Optional, not recommended) 4. Guess/Bruteforce or use default password to gain access to the device. Some exploits are implemented for couple specific IoTs.\n#### 5. Report devices in critical infrastructure to your local CERT.\n\n## Features\n- More than 100 ICS devices\n- Gallery section shows every gathered screenshot in one place\n- Interactive Google maps\n- Google street view support\n- Possibility to implement own exploits or scanning techiques\n- Support for NMAP scan in xml format as an input\n- Find the route and change location of device\n- Statistics for each search\n- Search Flick photos nearby your device\n- Position for vessels is scraped from device directly, rather than IP based\n- Some devices return hints or location in the response. It's parsed and displayed as an indicator that helps to geolocate device.\n\n## Articles\nhttps://www.offensiveosint.io/hack-the-planet-with-amerka-gui-ultimate-internet-of-things-industrial-control-systems-reconnaissance-tool/\n\nhttps://www.offensiveosint.io/offensive-osint-s01e03-intelligence-gathering-on-critical-infrastructure-in-southeast-asia/\n\nhttps://www.offensiveosint.io/hack-like-its-2077-presenting-amerka-mobile/\n\nhttps://www.zdnet.com/article/kamerka-osint-tool-shows-your-countrys-internet-connected-critical-infrastructure/\n\nhttps://www.icscybersecurityconference.com/intelligence-gathering-on-u-s-critical-infrastructure/\n\n## Installation\n\n### Requirements\n- beautiful soup\n- python3\n- django\n- pynmea2\n- celery\n- redis\n- Shodan paid account\n- BinaryEdge (Optional)\n- WHOISXMLAPI (Optional)\n- Flickr (Optional)\n- Google Maps API\n- Pastebin PRO (Optional)\n- xmltodict\n- python-libnmap\n\n\n**Make sure your API keys are correct and put them in keys.json in main directory.**\n\n### Run\n```\ngit clone https://github.com/woj-ciech/Kamerka-GUI/\npip3 install -r requirements.txt\npython3 manage.py makemigrations\npython3 manage.py migrate\npython3 manage.py runserver\n```\n\nIn a new window (in main directory) run celery worker\n```celery worker -A kamerka --loglevel=info```\n\nFor new version of Celery\n```celery --app kamerka worker```\n\nIn a new window fire up redis\n```apt-get install redis```\n```redis-server```\n\nAnd server should be available on ```http://localhost:8000/```\n\n\n## Search\n### Search for Industrial Control Devices in specific country\n ![](screens/search1.png)\n\n- \"All results\" checkbox means get all results from Shodan, if it's turned off - only first page (100) results will be downloaded.\n- \"Own database\" checkbox does not work but shows that is possible to integrate your own geolocation database.\n\n### Search for Internet of things in specific coordinates\nType your coordinates in format \"lat,lon\", hardcoded radius is 20km.\n  ![](screens/search2.png)\n\n## Dashboard\n   ![](screens/dashboard.png)\n\n## Gallery\n![](screens/gallery.png)\n\n## Maps\n### City map\n ![](screens/map.png)\n\n### Industrial Control Systems in Poland - ~2.5k different devices\n![](screens/map2.png)\n\n## Statistics\n![](screens/stats.png)\n\n## Device map\n![](screens/device_map.png)\n\n## Intel\n![](screens/intel.png)\n\n## Geolocate\n![](screens/map3.png)\n\n## Scan \u0026 Exploit \u0026 Information\n![](screens/exploit.png)\n\n## Full list of supported devices with corresponding queries\nhttps://github.com/woj-ciech/Kamerka-GUI/blob/master/queries.md\n\n## NMAP Scripts\n- atg-info\n- codesys\n- cspv4-info\n- dnp3-info\n- enip-info\n- fox-info\n- modbus-discover\n- modicon-info\n- omron-info\n- pcworx-info\n- s7-enumerate\n- s7-info\n\n## Exploits\n- CirCarLife SCADA 4.3.0 - Credential Disclosure\n- VideoIQ - Remote file disclosure\n- Grandstream UCM6202 1.0.18.13 - Remote Command Injection\n- Contec Smart Home 4.15 - Unauthorized Password Reset\n- Netwave IP Camera - Password Disclosure\n- Amcrest Cameras 2.520.AC00.18.R - Unauthenticated Audio Streaming\n- Lutron Quantum 2.0 - 3.2.243 - Information Disclosure\n- Bosch Security Systems DVR 630/650/670 Series - Multiple Vulnerabilities\n\n\n## Used components\n- Joli admin template - https://github.com/sbilly/joli-admin\n- Search form - Colorlib Search Form v15\n- country picker - https://github.com/mojoaxel/bootstrap-select-country\n- Multiselect - https://github.com/varundewan/multiselect/\n- Arsen Zbidniakov Flat UI Checkbox https://codepen.io/ARS/pen/aeDHE/\n- icon from icons8.com and icon-icons.com\n- Nmap Scripts from NMAP Script Engine and Digital Bond repository\n- Exploits from exploit-db and routersploit\n\n## Additional\n- I'm not responsible for any damage caused by using this tool.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwoj-ciech%2FKamerka-GUI","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwoj-ciech%2FKamerka-GUI","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwoj-ciech%2FKamerka-GUI/lists"}