Stats
Actions
Tags
From iothackbot
Scans ONVIF devices for authentication bypasses and weak credentials. Use for security testing of IP cameras and IoT devices.
How this skill is triggered — by the user, by Claude, or both
Slash command
/iothackbot:onvifscanThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
You are helping the user scan ONVIF devices for security issues including authentication bypasses and weak credentials using the onvifscan tool.
You are helping the user scan ONVIF devices for security issues including authentication bypasses and weak credentials using the onvifscan tool.
Onvifscan is an ONVIF device security scanner that can:
When the user asks to scan ONVIF devices, test IP cameras, or assess IoT device security:
Determine scan type:
auth: Authentication and access control testing (recommended to start)brute: Credential brute-forcing on password-protected endpointsGet target information:
Execute the scan:
onvifscan <subcommand> <url> [options]Tests ONVIF endpoints for authentication requirements:
onvifscan auth http://192.168.1.100
Options:
-v, --verbose: Show full XML responses-a, --all: Test ALL endpoints including potentially destructive ones--format text|json|quiet: Output formatAttempts credential brute-forcing on protected endpoints:
onvifscan brute http://192.168.1.100
Options:
--usernames <file>: Custom usernames wordlist (default: built-in onvif-usernames.txt)--passwords <file>: Custom passwords wordlist (default: built-in onvif-passwords.txt)--format text|json|quiet: Output formatQuick auth check on a device:
onvifscan auth 192.168.1.100
Auth check with verbose output:
onvifscan auth http://192.168.1.100:8080 -v
Brute force with custom wordlists:
onvifscan brute 192.168.1.100 --usernames custom-users.txt --passwords custom-pass.txt
http:// - it will be added automatically-a flag with caution - may test destructive endpointswordlists/ directorynpx claudepluginhub brownfinesecurity/iothackbot --plugin iothackbotPerforms professional network reconnaissance and port scanning using nmap with a two-phase strategy (fast SYN scan then targeted service detection). Supports scan types, NSE scripts, and organized output.
Audits IoT deployments against OWASP IoT Top 10 using network scanning, firmware extraction, and traffic analysis. Includes test procedures and remediation guidance.
Performs IoT device security assessments across hardware, firmware, network, cloud, and mobile layers using UART/JTAG debugging, firmware extraction, and protocol analysis.