SetecLabs/camhak-site
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

1 Release 1 Tag

RSS Feed
  • v1.0 09ff19adbe
    Compare

    v1.0 — Initial publication Stable

    sssnake released this 2026-04-09 15:53:52 +00:00 | 0 commits to main since this release

    First public release of the Camhak research report.

    Live at: camhak.seteclabs.io

    Contents

    • 20 numbered findings (V01–V20)
    • 3 verified CVEs: CVE-2025-12636, CVE-2021-28372, CVE-2023-6322 chain
    • Per-finding deep-dives with vector / repro / sanitized evidence / impact / mitigation
    • 4 screenshots (one redacted)
    • Phase 2 hardware-teardown plan
    • 90-day disclosure timeline

    Sanitization

    All sensitive specifics — leaked secrets, hardcoded passwords, account email, JWTs, API keys, camera UID — are redacted. The unredacted artifact pack is available to CISA coordinators and UBIA security contacts on request.

    License

    CC-BY-4.0 for the report content. The toolkit is MIT (see cam-mitm)

    Downloads