As you know S7 protocol, used to communication between Engineering Stations, SCADA, HMI and PLC can be protected by password.
On-line authentication is a simple challenge-response protocol.
Enjoy our special S4x13 release by Alexander Timorin, Dmitry Sklyarov
Parameters are hardcoded, sorry.
On-line authentication is a simple challenge-response protocol.
- Password hashed (SHA1) on client (TIA Portal)
- Server (PLC) provide 20 byte challenge
- Client calculate HMAC-SHA1(challenge, SHA1(password) as response
Enjoy our special S4x13 release by Alexander Timorin, Dmitry Sklyarov
Parameters are hardcoded, sorry.
cfg_pcap_file = 'path to .pcap file'
cfg_dictionary_file = 'path to dictionary file'
cfg_dictionary_file = 'path to dictionary file'
Feel free to contribute.
Download link: http://pastebin.com/0G9Q2k6y
No comments:
Post a Comment