Why “and beyond”?: stepping stone attacks (pt 3)
çbrute-force URLs of internal web server via Axis camera’s telnet interface
¼#!/bin/mish
¼ [snip]
¼ for i in `cat $2`
¼ do
¼ if shttpclient -p $1/$i/ | grep 404 > /dev/null
¼ then
¼    :
¼  else
¼    echo "possible resource found: $1/$i/"
¼  fi
¼  sleep $3
¼ done