I think those cameras on the billboards are supposed to be public. It's probably so clients can confirm their ads are being shown.

At which point did we go from "i just wanna host a Buffy fansite" or "i just wanna share a couple tunes with buddies" to "anything you post publically is going to be relentlessly scraped, vulnerability scanned for profit, and used in the next LLM model whether you like it or not" ?

To everyone saying he didn’t hide the IPs, it’s literally on the open internet

I once found a camera system on the Internet at someone's house in the middle of nowhere...and somehow ended up moving into the house about a decade later...

Isn't it reassuring that embedded products are generally mature and secure, without firmware vulnerabilities... Oh... Wait...

This isn't only useful to cyber security experts, but also to show people why they shouldn't easily trust anything that connects to the internet, especially things with weak authentication, and even more so with none

geoguessr guy needs to find them to email the people that their devices are open

Fully expected John to be using Shodan lmao

If you're old enough, you remember "IP Cam trolling" because people were lazy with securing their networked devices. Such hijinks were a thing for a while on at least one of the Chans. The main "feature" allowing the troll was that the cameras had a speaker in addition to the mic, allowing the observer to disturb the observed in some manner. KZbin took videos about those down after some TOS change in the 2010's, even the ones that were more silly than malicious. (The ones I liked is where the guy bugging people eventually tells them to put a password on it at least. So the troll served a basic lesson in network security.) Despite all that, seems some things really never changed much. The "hack" is that things are still exposed to a lot of search engines depending on how the hosting works, so it's just a matter of knowing the keywords to bring them up.

This is incredibly worrying, but it's also important to show how much of your connections are available on the internet, and why securing those connections is so very necessary. Today it's a demonstration, tomorrow it's a legitimate malicious agent.

I remember finding something similar back in like 08. There was a site that you could browse public IP's for various cameras in your geographic location. There was a map and you could increase or decrease the range. It was interesting some of the cameras you could access. A few of the colleges in the area were wide open.

I really like the fact that viewers can SEE the code (and terminal) that you discuss in your videos! I can always see your code clearly and thanks so much for doing this! Most content creators that I see on KZbin post their code in small size font where I can hardly see it.

0:06 that's a public webcam of the city of Stützerbach in Austria.

Brilliant! love the way you present with such energy! Cheers!

I haven't done this for years! I found a freaky lobby cam once that I never saw anyone enter or exit. It was like one of those creepy alternate world things people talk about. "An Empty World, A Time Traveler, Another Dimension" 🤣

Way to represent, Melbourne! First St Vinnies, then billboard monitoring.

At 23:05 the German IP Webcam "Stützerbach - Blick vom Schlossberg" is most likely a "wether cam". So it's a webcam that's actually meant to be publicly accessible to check the weather status. Those are common in Germany and pretty neat if you think about going for a trip to some place but are unsure about the weather conditions.

I have never watched your channel before but I understand why you have 1.45 million subs, great booming voice coupled with some amazing oration skills added to some great video work, scripting and editing makes you really awesome at what you do. Great video and thank you for the information.

23:00 Blick vom Schlossberg - View from the castle on the hill. (down to the village, somewhere in Thuringia, Germany)

I'm more curious on the shirt/cloth John is wearing. It looks so shiny and cool looking.

There's a bunch of cameras that come out with open ports, there was a whole series of HIKvision cameras that are exposed if you only know the IP address in the correct port number

Thanks for sharing! I can see how easily you can go down the rabbit hole to find Alice.

Remember looking at all this kind of stuff back before GUI, just using command line or crude level text and being blown away at how much was on the open internet.

What a fabulous video! I'm going to consider Censys for further analysis and exploration. It seems fun, interesting and helpful-thanks a lot! ❤

hammond : bowling mask...what is that... bowling mask : 😸

I was surprised to see after looking into Censys that they're physically located in Ann Arbor. I lived in Ann Arbor for years :-O

Love your content! And question what keyboard you are using?😂

25:53 gute Preise, gute Besserung 😂 (That's the slogan from the company ratiopharm)

This seems very similar to Shodan. These sites are always very shady because I bet a lot of these people had no idea these devices were on the internet

I literally did this today with Finn. The synchronicity is real

a lot of stuff i looked up actually had a login page after the 200 so... kudos to them.

Ive found multiple cameras from inside home with people just doing their thing on shodan, creepy af, also found controllable cameras through out some landmarks in rome.

Well, that is something that is left there forever.

My good friend does that with the 3D printers. He has them on a remote switch and he will run them while he is at work, so he can check on them remotely and if therer is an issue he can shut it down remotely.

This site was part of a question in my CEH cert exam.

Glad to of seen this and find out my ip is all good and no open service, port exposed to the public

VNC Resolver is something very similar to this which posts random snapshots on fedi

It's crazy what you can find on the internet.

this is cool. like the overpass turbo of the Internet. awesome

3:01 Interesting queries, hope there aren't any Internet exposed industrial systems.

i remember yt vids of ipcam trolling. good times.

"Weird, wild, wacky stuff!" It's just cars, buildings, and streets. This dude's easily amused, I guess. Maybe an Amy Schumer fan.

John just found something, that my grandpa showed me as a kid (no joke) LMAO. The funniest thing is that most of these cameras actually are publicly available. Like not only because of this site, but rather they are intended to be public.

@ 4:08 Hold Ctrl then scroll your mouse wheel up or down to quickly zoom the page in or out. -

Thanks Mr.Jhon that's great scammer hacker ❤

Love this and another great site 😊👍

So, that’s why I see that going on my website 1 times every week, it’s just scanning for changes!

Takes me back 20-30 years ago 😊😊

there are a lot of publicly accessable webcames in germany that just sit on houses and show you the enviornment

Oui John!!

I giggled when I saw the "Try one of these examples" and the first example shown was "Russian hosts running RDP or FTP". 🤣

Your background is cool

Big Tech meets Big Ick - I love it!!

John Hammond is the Barney of cybersecurity.

Searches are limited to 10 per day unless you create a login.

They called me crazy but i knew i had to install a cctv and not a crappy smart camera

Great video today

I use it to check traffic, but the public cameras are pretty slow since everybody is using it

Ive watch many of these stream years ago with a little the same pictures.

One of those billboards is literally 5 minutes from my house. What are the chances.

Imagine looking at active cameras and randomly seeing someone through their webcam.. that would.. not be good.

I have one client who have mail server on shared hosting (the same IP is for more email domains) that I don't have access (I only have access to cPanel of his domain). I just want to know what other email domains are on that IP address because my client have problems: his IP gets to blacklist very often and then they can't send emails to some partners. His company is clear I know for sure. Some other company that have email domain on the same IP are making problems and I need to know who else is on that IP so that I can contact them and ask them to check their security or maybe someone is sending malicious emails. They are all in my country, maybe in the same town. But I don't want to call hosting company before I check this by myself.

Whats the difference between Censys and Shodan?

What a useful tool!

the best part is when you can move them :)

Inst it very similar to Shodan ?

What are some other Shodan like services out there?

for more info , the endpoints of the misconfigured cameras for example AXIS, are full of RFI and LFI.

@23:04 The title translates to something like "Blick on Castlecity."

How is the legal situation with such a search engine? Are they allowed to scan the whole internet over and over again? I thought I remembered that at least in my country (Germany) port scanning is illegal. But I might be wrong.

This makes me feel like a genius just for having at least put a password on my TightVNC from the start 😅 (The port for it is no longer open/forwarded to the wild wide open internet since some time ago, instead I set up a VPN so I can connect into the home network and only *then* connect to the VNC; because I found out that TightVNC doesn't encrypt any of the session keystrokes or other traffic *except* for the password... meaning that the actual windows user account password I'd authenticate after connecting using the VNC server password would be sent as plaintext to the computer lol. Now it's at least encrypted until it's through to my VPN at home!)

The webcam from ~ 22:56 is a public, the one from the roof

When i was taking my course in CEH, our instructor (big dude, with a big beard, and full sleeves) poked some Chinese routers that were open to the Internet. Illegal? I dunno. Funny. Hell yes

You should connect to new refrigerators and see what food people have.

I'm actually surprised these devices let you use their app without setting a password

Oh man.... The "S" in IOT stands for "Security"

"I feel a little bit odd doing just the United States , I'll pivot to Canada" LMAO

lol bro are u from edmonton?

Once saw one of these videos of an old guy asleep on his sofa, think the camera was inside a TV. You're better off covering anything thats got a camera if you don't want others being able to see you. I have tape covering the camera on my laptop for the same reason. If you've got any webcams also unplug them when not using them. There are thousands of links online and through google that give access to all these cameras.

y’all remember that one site that would take u to a random persons public webcam?🤣

16:42 his task bar briefly appears. Showing proton vpn, brave as well as the time 11:57 lol.

We use to have to type to code line into Google search bar then use the links that appears to pick from 👨🏻‍💻

In this video : the phrase "drill down"

21:36 It would be fun if we can look for it if there are cameras in Area 51

I am not sure but isn’t this something like shodan?

yea internet security amazing i was looking at home cameras or hotel's that are out there a few years ago is wild that some people don t know that they are not actually secure whit those cameras 😂

Make a part 2

But you can search these from google right? I used to check these open ports for companies from google or was it some spoof? 😅

Is there a way to look at your own ip incase anything is leaked?

Imagine finding out you have been the main character of a tv show in another country because you forgot to secure your home cameras 😮

More plz

Would be cool if they have api and also return the websites technologies and versions like php version Id make use if that with some python

And this is why kids you must watch/listen Security Now podcast

Its like shodan right? Just gratis?

Most people buy things and then never change the login info...... so its wide open.

"Know your attack surface and plug the holes" Change passwords.

There's a pretty cool song to play through the ip cameras: The Police - Every Breath You Take. It's the ultimate stalker's theme. Edit: Remember John, do not feed the monkeys.

Should we be using a VPN when using this search engine?

Ton of public cams on EarthCam but the other stuff….

This screams honeypot