<?xml version="1.0" encoding="utf-8" standalone="yes"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>Zoneminder on appl3b0y</title>
    <link>https://appl3b0y.com/tags/zoneminder/</link>
    <description>Recent content in Zoneminder on appl3b0y</description>
    <generator>Hugo</generator>
    <language>en-us</language>
    <lastBuildDate>Wed, 08 Jul 2026 00:00:00 +0000</lastBuildDate>
    <atom:link href="https://appl3b0y.com/tags/zoneminder/index.xml" rel="self" type="application/rss+xml" />
    <item>
      <title>CCTV</title>
      <link>https://appl3b0y.com/writeups/cctv/</link>
      <pubDate>Wed, 08 Jul 2026 00:00:00 +0000</pubDate>
      <guid>https://appl3b0y.com/writeups/cctv/</guid>
      <description>&lt;h2 id=&#34;introduction&#34;&gt;Introduction&lt;/h2&gt;&#xA;&lt;p&gt;&lt;strong&gt;CCTV&lt;/strong&gt; is an easy Linux box built around a realistic video-surveillance stack: a &lt;strong&gt;ZoneMinder&lt;/strong&gt; front end on port 80 and a second surveillance tool, &lt;strong&gt;motionEye&lt;/strong&gt;, running internally as root. It is a clean &amp;ldquo;known software, known CVE&amp;rdquo; chain, but with two nice teaching moments along the way: an authenticated blind SQL injection that forces you to feed sqlmap a real logged-in request, and a root password hiding in a &lt;em&gt;commented-out&lt;/em&gt; config line.&lt;/p&gt;</description>
    </item>
  </channel>
</rss>
