Hikvision Firmware Decrypted

Author: Brian Karas, Published on Mar 09, 2017

A developer has decrypted Hikvision's firmware, allowing examination of Hikvision's device source code and contents.

In this report, we overview the tool, showing you how it works, sharing a Hikvision's camera decrypted firmware and overviewing some things to look for inside.

* ********* *** ********* *********'* ********, ******** *********** ** *********'* device ****** **** *** ********.

** **** ******, ** ******** *** ****, ******* *** *** it *****, ******* * *********'* ****** ********* ******** *** *********** some ****** ** **** *** ******.

[***************]

Utility ********

*** *********, ***********,********* *** ******* ** *** ******* **** ** *********. "*******" ** ***** *** "********* ******/********". ** ******** *** extracts ****** ********* ******** ******, ******** *** ********* **** ******* to *******, *** ******* **** **** *** ****** ******** ** install ** ** * ****** ** ********. *** ****** ******* takes * *** *******.

*** ******* ******** "** *** **" ****** ********* *** "*** and ***" ******** *********, ***** ****** *** ******** ** *********'* most ******* ** *******, *** ****-****** *********.

Hikpack *****

* ** *** ***** *********** ** ******** ** *** *** hikpack *******. *** ***** ******* * ***** *******, * *********** of************* ****-***** ***** ***** ******** ** ****.

** *** ******* *** **** ********* ******** ****** (********* ******** ********* ****), ***** *** **** ****** ***** *** ********* *******:

** *** ***** ** ****** **** ************* (*.*., ******** ******** from *******), ******* "-* *" ** **** ** ** ******* the ***** ** ** ******* *******:

*** ********* ******** ** **** ****** ** *** ********* ********* ("test1" ** **** ****), ***** *** ** *******, ** ******** further ** ******** *****.

Sample ********* ********

***** **** *******, *** ** **** ** ******* *** ******* Hikvision's ******** ******** ****** ** *** * *** ** ******** files. ************** .*** ***** ********* ****** ********** ***** *** *********** ** examine.

******* **** *** ****, ******** *** *** *********** / ********** of *********'* ********:

**** *********** ******** **** *** ********* *****:

*** ********* "*****.***-**************" ******** *** **** ** *** ***** ********* system **** **** ** *** ******. **** **** ********* ** can **** ** /***/****** *** *** ** ******** * ****** value:

**** ***** **** ***** ** * ****-***** "****" ****, **** alone ** *** **********, ** ********* ***** ***** ** ***** a **** **** ** *** ********* *****. *** **** ** other ***** ***** ******** **** ***** ******* ** *** ****** runs ** ****, ***** *** **** ** ***** *********** ********** if ********** *** ***** ** ***** *********.

/***/****.*/*** ***** *** ********* *** ******** *** ****** ***** ** when ** ******:

*** *********** **** **** ** *** ******** ******** ****, ******* the ****** ** **** *********** ****** ** ** **** ** (SSH). ***** ****** ** ** **** ** **** *** *********** if *** ** *** ******* ** *** ******.

********* *** /***/*** **** **** ** ****** ***** **** **** shows *** ***** ******* ***** "********", * ****** *** ****** **** ** ******** *******:

** *** ******** **** *** ******* ***, *** ***** **** likely ** **** ** **** *** ****** ** *** ******, which ***** **** ******* *** ** **** *** **** ******** of *** ******.

***** ** **** * ****** **** ****** "*************", ***** **** implies ** ***** ** ****** **** ***** ********* ** ******* system-level ******** ** ******** ** ***** *******.

***** **** ** ***** ***** ******** ** ******** ******** *****, they ** **** **** ******** *** ********* ***** ****** ** keep ** *** ****** *******, *** ******* ** * ******** rule, ******* ** ****** *** ******* *** ** ***.

Firmware ********** **** ********

*** ********* ******** ****** **** *********** *** ********* ** ******* the ***** ******** ** *** ********. **** **** **** *** analysis ** ** ******** ** ***** *** ********** ********** **** can ** *********, *********, ***. **** ** *** *** *********** *************** ************ **********, **** *********** ******* ** ******* ******** ***** *** then ******* **** *** **********.

****** ********* ** *** **** ****** ** ******** ***** ** find *********** ********** ** * ******, ****** **** ****** ***** their *** **** ******.*** ********* **** *** ********** *** ******* ******** **** ** 70+ *** ************ **** ** **** **** **** ******** ******** ********.

Comments (16)

**** *****, **** ** ******.

***** * ***** **** ** **-***** ** *** **** ***** I *** **** **** *** **

******* **** ****** **** * ****** *** **** **** *** repos ** ** *******

Kali_screenshot

********* ** *** ***** ******** ***** ** **** ******< * had **** ******** ******* ** *** **** ****.

**** ******* ** **** *** *** ******* ** *** ***'* mind ** ******?

Kali_release

* ****** *** **** ****** ** **** * ****** ******* and ******** *** *** ********** ******* ** *** ****** *** server ******* ** ***, ***** ** ** ** **** ** access *** ****** *** * ********...

** ** * ***** ********** ** *** ***** ***** *** cia/nsa **** ********? =*

**,

** ***** * ********? ** "***** ****" ?

**** ********* ******** ******** **** **** ********* **** ******* ******. Now *** *** ***** ***. *** ***** ***** ******* **** their ****-******* (*********** *** ********* ************* ********) *** **** **** find **** *** ****** *******.

********* ****** ******* *** * ******* ****** ** ******** *******...

**'* **** ***** *** ** ******* *** ******** *** * long *****. **** ** *** ******* *************** **** **** *****.

*** **** ***'* *** ********** *** ** * ******** *****.

***** **** ** * **** ** ****** **** ** ** indeed ******* ****** ********?

***** ** ** **** ** * ***** * **** **** is *** ******* *** ********.

****** * *******, *** ** *******:

"********* *** /***/*** **** **** ** ****** ***** **** **** shows *** ***** ******* ***** "********", * ****** *** ****** **** ** ******** *******:"

"*** ********* ***** ****** ** **** ** *** ****** *******, but ******* ** * ******** ****, ******* ** ****** *** running *** ** ***."

******* **** *** ******* *** ******** **** ** * ****** cgi ** ********... *** ****** ** ** *** ********.

****'* ** *********** *******. *'* *** **** * ***** **** my ******* ***, *** **'* ***** * **********... *** ***** Hikvision **** **** ******* ***** ****** ********? **** **** ***** on ******** ***** *** ** **** **** ****** **, **** would ******* **** *** ********* ************ ** ***** **** (** at *** **** ***** ************ *** ******** ***************). ***** *** be * *** ****** **** ****'* **** ** **** ** themselves, **** *** ******** ******** ********, ** ******* **** ** the *********, *** **** ***** **** ******* **** *** ************ of ******** ****** ** *** *** ******.

**** ***** ** *** ******** *** **** ****** *******.

* ***** ****** ****** ******** **** *** ***** ********.

*** *** ***** ** *** ***** ********* ***'* ********** ** request *** ****** **** ** *** *** ******** ******** ** any ****. *** ************ *** ** **** *** * **** that ******** *** *** ***** *** *** ** *** ************* to *** ***** ****. *** "********" ** *** *** ******** the ************ ** ******* *** ************* ** *** **** **** under *** *******. **** ******* *.*. ** ******/****** ************* ** support *** ********* ***'*.

****** ***** ********: *****://**.*********.***/****/**************************

**** ********* ******* **** * *** ********?

********* **** ***, ********. ************ ********* **** ****** ******** ****

**** **** ** *** ******** **** ***** ***:

  • *** *******
  • ***** ******
  • ******* *.**.*
  • *-****
  • **** ***
  • ******** *.*.**
  • *** - ***** *** ******* *.*.*
  • ** *** ** *.*
  • ************** *.*.*
Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

"New Zealand Govt Uses Chinese Cameras Banned In US", Considers Security Audit on Oct 12, 2018
Newsroom NZ has issued a report: "NZ Govt uses Chinese cameras banned in US": This comes after the US federal government banned purchases of...
Honeywell Hides Selling US Gov Banned Chinese Video Surveillance on Oct 10, 2018
Honeywell hides selling US government banned Chinese video surveillance as their own 'Honeywell' products, deceiving buyers and putting US security...
Default Passwords Outlawed in California, US To Follow on Oct 09, 2018
UPDATES A new California bill aimed at improving security for connected devices has been signed into law. The law takes aim especially at...
Security System Health Monitoring Usage Statistics 2018 on Oct 09, 2018
How well and quickly do integrators know if devices are offline or broken? New IPVM statistics show that typically no health monitoring is...
IP Camera Installability Shootout - Avigilon, Axis, Bosch, Dahua, Hanwha, Hikvision, Uniview, Vivotek on Oct 08, 2018
What are the best and worst cameras from an installation standpoint? Which manufacturers make it harder or easier to install their cameras? We...
China Hacks Video Servers Causing Uproar on Oct 05, 2018
An incident causing an international uproar is hitting home in the video surveillance industry as a Bloomberg report, "The Big Hack: How China...
US Commerce Department Considers Sanctions Over Companies Profiting From Xinjiang on Oct 04, 2018
The US Commerce Department is considering its own sanctions for businesses alleged to be enabling repression in the Chinese region of Xinjiang...
Fall 2018 New Products Directory on Oct 03, 2018
Fall 2018 New Products Directory We have compiled a directory of new products released fall 2018, or at least since our Spring 2018 Directory. The...
Evidence Of Hikvision's Involvement With Xinjiang IJOP And Re-Education Camps on Oct 02, 2018
IPVM reveals as-yet unreported details about Hikvision’s activities in Xinjiang - a region of China where massive human rights abuses are being...
Ladders For Installers Guide on Sep 25, 2018
Ladders are one of the most important pieces of worksite equipment for the surveillance technician. Too often, however, even highly experienced...

Most Recent Industry Reports

ADI's Financials Revealed + W-Box Growth Priority on Oct 15, 2018
  ADI is one of the most powerful distributors in the security industry but how big are they? How much profit do they make? How much do they sell...
Dahua Face Recognition Camera Tested on Oct 15, 2018
Dahua has been one of the industry's most vocal proponents of the value that AI creates: As part of this, Dahua has released a facial...
Amazon Touts Home Security Market Disruption on Oct 15, 2018
Amazon is coming for ADT and all of home security. Indeed, Amazon is advertising this as, in their own words, calling home security a: Inside...
Higher Power PoE 802.3bt Ratified, Impact on Security Products Examined on Oct 12, 2018
Power over Ethernet has become one of the most popular features of many video, access, and other security products. See our PoE for IP Video...
"New Zealand Govt Uses Chinese Cameras Banned In US", Considers Security Audit on Oct 12, 2018
Newsroom NZ has issued a report: "NZ Govt uses Chinese cameras banned in US": This comes after the US federal government banned purchases of...
Mysterious Patent Troll 'Secure Cam' Targets Industry, Sues Hanwha, Hikvison, JCI, Panasonic, More on Oct 11, 2018
A company named "Secure Cam," who is actively hiding their ownership, has acquired a slew of video patents and is systematically suing video...
Unfixed Critical Vulnerability In Millions of XiongMai Devices Disclosed on Oct 10, 2018
XiongMai, one of the biggest OEMs alongside Dahua and Hikvision, has suffered a critical vulnerability impacting millions of their devices. This...
Honeywell Hides Selling US Gov Banned Chinese Video Surveillance on Oct 10, 2018
Honeywell hides selling US government banned Chinese video surveillance as their own 'Honeywell' products, deceiving buyers and putting US security...
Door Hinges Guide on Oct 10, 2018
Some of the trickiest access control problems are caused by bad door hinges. From doors not closing right, to locks not locking, worn or warped...
Default Passwords Outlawed in California, US To Follow on Oct 09, 2018
UPDATES A new California bill aimed at improving security for connected devices has been signed into law. The law takes aim especially at...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact