Share
## https://sploitus.com/exploit?id=90104C60-A887-5437-8521-545277685F55
# CCTV-Hacking-Simulated-Environment-Only

*Repository purpose:*  
This repository contains *lab-safe tools and documentation* used for a simulated CCTV security assessment (TurnKey ZoneMinder in an isolated VM).  
*Important:* This repository intentionally does NOT include any reports, exploit code, or proof-of-concept (PoC) scripts. It contains safe setup guidance and snapshot instructions only.

> โš ๏ธ Use these materials *only* on virtual machines and networks you own or have explicit written authorization to test. Do NOT run scans or tests against third-party infrastructure.

---

## What this repo contains
- CVE-2024-6387/ โ€” POC tool.
- Metigation checklist and remediation playbook/
- README.md โ€” this file.

---

## Purpose and scope
This repo is intended to be safe for public portfolio use. It demonstrates process discipline for lab testing (isolation, snapshots, documentation) without including any offensive content or sensitive logs.

## High-level safe workflow
1. Create an isolated VM network (host-only / LAN segment).  
2. Deploy TurnKey ZoneMinder or Ubuntu + ZoneMinder from official sources and verify checksums.  
3. Take an initial clean snapshot ("clean-install").  
4. Perform non-destructive discovery (e.g., nmap -sV) only inside the isolated lab environment.  
5. If you need to preserve evidence after tests, follow the snapshot/export instructions in scripts/snapshot_instructions.md and store artifacts securely (offline/encrypted).  
6. Rebuild from a clean image and apply mitigations before reconnecting to wider networks.

---

## Adding mitigation & remediation docs
You can later add:
- checklists/mitigation-checklist.pdf โ€” prioritized mitigation checklist.  
- checklists/remediation-playbook.pdf โ€” step-by-step remediation playbook.

---

## Contributing & security
- Contributions accepted for offensive or defensive content, documentation, and improvements to safe helper docs.  

## Author / Contact
Prepared by: *Seif Eldien Ahmad*  
Email: seifahmed7293@gmail.com
---
1) Test tips:

## Before testing (clean baseline)
1. Power off the VM (recommended) or ensure minimal write-activity.
2. VMware Workstation: VM โ†’ Snapshot โ†’ Take Snapshot.
   - Name: clean-install-YYYYMMDD
   - Description: "Clean baseline - no tests executed"
3. Record metadata: timestamp, operator name, host, notes.

## After tests (if you need to preserve evidence)
1. Immediately stop further testing.
2. Take a new snapshot: compromised-YYYYMMDD_HHMM.
3. Export the VM if long-term preservation required:
   - File โ†’ Export OVF โ†’ save to secure storage (external drive encrypted).
4. Store metadata with archive: snapshot name, export file name, checksum, operator, short notes.

## Tips
- Do not delete the clean baseline snapshot until you have tested recovery from a rebuilt image.
- If you need memory capture for forensics, use specialized tools and follow a forensic runbook.


---

2) Git commit commands
```
git clone https://github.com/SeifEldienAhmad/CCTV-Hacking-Simulated-Environment-Only-.git
cd CCTV-Hacking-Simulated-Environment-Only-/
ls
cd CVE-2024-6387/
gcc fileName.c -o exploit.so
python3 CVE-2024-6387.py -e targetIP -p targetPort