Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
pentestitBlackPENTESTIT:853F1E836C5A6A63653FF955FAF241E2
HistorySep 03, 2017 - 12:56 a.m.

ICSSPLOIT: A Industrial Control System Exploitation Framework

2017-09-0300:56:57
Black
pentestit.com
965

0.022 Low

EPSS

Percentile

89.5%

JSON

PenTestIT RSS Feed

This framework is based on RouterSploit, which has already been covered on this blog. Infact, that’s how I got to know about it - I was checking the source for updates and I found a reference for this Industrial Control System (ICS) exploitation framework -ICSSPLOIT. ICS security for long has been a pain as systems haven’t been updated in a while. There are a few which run the End-Of-Life Windows XP operating system too! I hope it changes for good soon.

ICSSPLOIT

More about ICSSPLOIT:

ICSSPLOIT is an open source industrial control systems exploitation framework in Python, that is based on the router exploitation framework - RouterSploit. It helps you test vulnerabilities with multiple programmable logic controller (PLC) and ICS software. It also sports a Metasploit like command structure.

ICSSPLOIT supports the following ICS protocols:

Modbus that listens on TCP port 502 by default.
WdbRPC Version 2 (VxWorks) that listens on TCP port 17185 by default.

Likewise, it has Profinet DCP scanner & Vxworks 6.x scanner modules implemented for scanning.

Exploit modules included in ICSSPLOIT:

  • s7_300_400_plc_control.py: Siemens S7-300 and S7-400 start/stop.
  • vxworks_rpc_dos.py: Works on all Vxworks system which Remote Procedure Call (RPC) protocols is enabled.(CVE-2015-7599)
  • quantum_140_plc_control.py: Schneider Quantum 140 series start/stop.
  • crash_qnx_inetd_tcp_service.py: Crash QNX Inetd tcp service started with inetd.
  • qconn_remote_exec.py: QCONN QNX Neutrino remote command execution vulnerability.

In addition to this, ICS protocol modules for Profinet DCP, Modbus TCP and WDB RPC version 2 protocols are also included.

Installing ICSSPLOIT:

ICSSPLOIT 0.1.0 can work out of the box on Kali Linux systems as it includes the necessary python packages already. Otherwise, the following packages are necessary: gnureadline, requests, paramiko, beautifulsoup4, pysnmp, python-nmap, scapy. They have been included in the requirements file which can be used with pip in the following manner:

pip install -r requirements

Check out the GIT repository of this industrial control systems exploitation framework here.

The post ICSSPLOIT: A Industrial Control System Exploitation Framework appeared first on PenTestIT.

Related

nvd 1
cve 1
kitploit 1
prion 1
cvelist 1
nvd
nvd
CVE-2015-7599
2017-02-07 17:59:00
cve
cve
CVE-2015-7599
2017-02-07 17:59:00
kitploit
kitploit
ISF - Industrial Control System Exploitation Framework
2019-04-07 21:31:00
prion
prion
Integer overflow
2017-02-07 17:59:00
cvelist
cvelist
CVE-2015-7599
2017-02-07 17:00:00

0.022 Low

EPSS

Percentile

89.5%

JSON
Related for PENTESTIT:853F1E836C5A6A63653FF955FAF241E2
nvd1cve1kitploit1prion1cvelist1