Screengrabs of dahua backdoor script
Added content to Dahua Backdoor post
Phonecalls with Janet Fenner (suggested they do a bug bounty program, even in the current state, better to show you are serious about fixing issues, etc.). Also talked briefly about pen testing firms, suggested Rapid7 as they worked with Hik.
Call with Anvil Group (local guy finally returned my call), should have what I need from them now.
Received email from Cobalt PR person with standard release info attached, told her we do actual analysis, and needed more details (listed out usual stuff, price, channel, strategy, battery info, etc.). She replied:
"Hi Brian,
For the next few weeks, Cobalt is staying laser-focused on iterating and refining the security aspects of the product for our initial pilot customers. It would be premature of us to provide any guidance or details on pricing, partnerships, sales channels, or new customer opportunities. Perhaps we can reach back out when the timing is more appropriate.
Best,
Angela"
They are making the product public, but are too busy refining it to talk to their target audience... Not off to a good start.
Tomorrow I need to knock out a few posts.