RTSP (Real Time Streaming Protocol) Pentesting

RTSP is an application level network protocol designed for multiplexing and packetizing multimedia transport streams over a suitable transport protocol. Default ports are 554, 8554.

Enumeration

nmap --script rtsp-* -p 554,8554 <target-ip>

Default Credential

admin:admin
admin:12345

Watch RTSP Stream using VLC Media Player

Reference: https://www.youtube.com/watch?v=ksUylvdJQDQ

We might be able to watch RTSP stream using a media player such as VLC. Here is the example for VLC.
First off, if we don’t have the VLC Media Player, we need to install it by the following command.

sudp apt install vlc

Then open VLC, follow these steps:

1. Click on Open Network Stream... in Media menu.
2. In another dialog, enter the network URL like rtsp://10.0.0.2:554. Replace 10.0.0.2 with target ip address.
3. Enter username and password in login screen.

Now we might be able to watch RTSP stream.