×ªÔØATTACKING PLCS BY PLC IN DEEP

admin ·¢±íÓÚ 2022-11-26 20:29:11

ÔÚBlack Hat 2016£¬Ralf SpennebergµÈÈËÔÚËûÃÇµÄ±¨¸æ¡¶PLC-Blaster: A Worm Living Solely in the PLC¡·ÖÐ½éÉÜÁËÒ»ÖÖ²»ÒÀÀµÓÚ¼ÆËã»ú£¬Ö»Í¨¹ýÎ÷ÃÅ×ÓPLCÉè±¸À´½øÐÐ´«²¥ºÍ¸ÐÈ¾µÄ¹¤¿ØÈä³æ²¡¶¾¡£¸Ã²¡¶¾¿ÉÒÔÍ¨¹ýÒ»Ì¨±»¸ÐÈ¾µÄPLCÀ´½ÓÈëÕû¸öÏµÍ³£¬½ÓÏÂÀ´»áÍ¨¹ý¸´ÖÆ´«²¥µ½¸ü¶àµÄPLCÖÐ£¬²¢ÇÒÄÜÔÚ²»Ó°ÏìÒÑ´æÔÚµÄPLC³ÌÐòµÄÇ°ÌáÏÂ±»Ö´ÐÐ¡£2018ÄêÔÚÈðµäË¹µÂ¸ç¶ûÄ¦¾ÙÐÐµÄCS3¹¤¿Ø°²È«»áÒéÖÐ£¬ÂÌÃË¿Æ¼¼¸ñÎïÊµÑéÊÒÍÅ¶ÓÔÚ²Î¿¼PLC-BlasterµÄ»ù´¡ÉÏ£¬ÑÝÊ¾ÁËÊ¹ÓÃÒ»Ì¨PLC¹¥»÷ÆäËû²»Í¬³§¼ÒPLCµÄ·½·¨¡£

<h2 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
PLC¼ò½é
</h2>
<p style="margin:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
PLCÈ«³ÆÎªProgrammable Logic Controller£¬¼´¿É±à³ÌÂß¼¿ØÖÆÆ÷£¬ÊÇÒ»ÖÖ²ÉÓÃÒ»Àà¿É±à³ÌµÄ<a href="http://baike.baidu.com/view/87697.htm" style="font-style:inherit;font-weight:inherit;outline:none 0px;cursor:pointer;transition:all 0.3s ease 0s;">´æ´¢Æ÷</a>£¬ÓÃÓÚÆäÄÚ²¿´æ´¢³ÌÐò£¬Ö´ÐÐÂß¼ÔËËã¡¢Ë³Ðò¿ØÖÆ¡¢¶¨Ê±¡¢¼ÆÊýÓëËãÊõ²Ù×÷µÈÃæÏòÓÃ»§µÄÖ¸Áî£¬²¢Í¨¹ýÊý×Ö»òÄ£ÄâÊ½ÊäÈë/Êä³ö¿ØÖÆ¸÷ÖÖÀàÐÍµÄ»úÐµ»òÉú²ú¹ý³Ì¡£Î÷ÃÅ×Ó¡¢Ê©ÄÍµÂ¡¢ÂÞ¿ËÎ¤¶ûÕâÈý¸ö³§¼ÒµÄPLCÄ¿Ç°ÔÚÊÐ³¡Õ¼ÓÐÂÊÖÐ´¦ÓÚÁìÏÈ¡£±¾ÎÄÊ¹ÓÃÎ÷ÃÅ×ÓS7-300 PLC¡¢S7-1200 PLC£¬Ê©ÄÍµÂPentium 140 PLCÒÔ¼°ÂÞ¿ËÎ¤¶ûMicrologix 1400 PLCÎªÀý½øÐÐ½éÉÜ¡£

<h2 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Replay Attack
</h2>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Replay Attack³£ÓÃÓÚÈçPLC¡¢DCS¡¢SISµÈ¹¤¿ØÉè±¸µÄ¹¥»÷£¬»ñÈ¡²Ù¿Ø¹¤¿ØÉè±¸µÄÊý¾Ý°ü£¬²¢½«»ñÈ¡µÄÊý¾Ý°ü½øÐÐÐÞ¸Äµ÷Õû£¬ÔÙ½«Æä·¢ËÍ¸øÏà¹Ø¹¤¿ØÉè±¸£¬¸Ã¹¤¿ØÉè±¸»á½ÓÊÕÊý¾Ý°ü²¢Ö´ÐÐ½øÐÐÏàÓ¦µÄÃüÁî¡£ÓÉÓÚ¹¤¿ØÏµÍ³Éè¼ÆÖ®³õ¸ü¶àµÄ¿¼ÂÇÊµÊ±ÐÔ£¬¶ø¶ÔÊý¾Ý°üÍ¨ÐÅµÄ°²È«¿¼ÂÇÏà¶ÔÉõÉÙ£¬Òò´ËÊ¹ÓÃRepaly AttackÊÇ×î¼òµ¥ÇÒÓÐÐ§µÄ¹¥»÷¹¤¿ØÉè±¸µÄ·½·¨¡£

<h2 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Î÷ÃÅ×ÓPLCÍ¨ÐÅÐÒé
</h2>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Î÷ÃÅ×ÓS7-300 PLCÊ¹ÓÃÎ÷ÃÅ×ÓË½ÓÐÍ¨ÐÅÐÒéS7Comm½øÐÐÍ¨ÐÅ£¬Î÷ÃÅ×ÓS7-1200 PLCÊ¹ÓÃÎ÷ÃÅ×ÓË½ÓÐÍ¨ÐÅÐÒéS7CommPlus½øÐÐÍ¨ÐÅ¡£S7CommÐÒéÒÔ¼°S7CommPlusÐÒé¶¼»ùÓÚTCP/IP£¬Í¨¹ý102¶Ë¿Ú½øÐÐÍ¨ÐÅ¡£S7CommÐÒéÉè¼Æ½ÏÔç£¬¸ÃÐÒéÃ»ÓÐÈÎºÎ¼ÓÃÜÑéÖ¤µÈ°²È«´ëÊ©¡£Ò»Ð©¿ªÔ´ÍøÕ¾ÉõÖÁÓÐÖ§³ÖS7CommÐÒéµÄÐ¡¹¤¾ß£¬Ê¹ÓÃÕâÐ©¹¤¾ß¿ÉÒÔ¶ÔÊ¹ÓÃS7CommÐÒéµÄÎ÷ÃÅ×ÓÉè±¸½øÐÐÔ¶³Ì²Ù¿Ø¡£S7CommPlusÐÒéÊ¹ÓÃÁËÎ÷ÃÅ×ÓË½ÓÐµÄ¼ÓÃÜËã·¨£¬¸ÃËã·¨½ÏÎª¸´ÔÓ£¬ÔÚ2017ÄêDefconÒÔ¼°Black Hat»áÒéÖÐ£¬ÂÌÃË¸ñÎïÊµÑéÊÒÍÅ¶Ó·¢±íÑÝ½²¡¶The Spear to Break the Security Wall of S7CommPlus¡·£¬½«¸Ã¼ÓÃÜËã·¨ÆÆ½â¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
S7CommÒÔ¼°S7CommPlusÐÒé¾ßÓÐÏàÀàËÆµÄÍ¨ÐÅÊ±Ðò£¬ÈçÍ¼1ËùÊ¾¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="554" height="347" src="https://www.2k8.org/content/uploadfile/202211/26/fb57f8ac.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼1 Î÷ÃÅ×ÓPLCÐÒéÍ¨ÐÅÊ±Ðò

<h2 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Ê©ÄÍµÂPLCÍ¨ÐÅÐÒé
</h2>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Ê©ÄÍµÂPentium 140 PLCÊ¹ÓÃModBus/TCPÐÒé£¬Í¨¹ý502¶Ë¿Ú½øÐÐÍ¨ÐÅ¡£Ê©ÄÍµÂPLCµÄÍ¨ÐÅÊý¾Ý°üÊ¹ÓÃModBus¹¦ÄÜÂë90£¬ºóÃæµÄdata²¿·ÖÎªÊ©ÄÍµÂPLCË½ÓÐÐÒé¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÔÚÊ©ÄÍµÂPLCµÄÍ¨ÐÅ¹ý³ÌÖÐ£¬Ê×ÏÈÏòÊ©ÄÍµÂPLC·¢ËÍÒ»¸ö»ñÈ¡SessionµÄÊý¾Ý°ü£¬µ±PLCÊÕµ½¸ÃÊý¾Ý°üºó£¬»á·¢ËÍ´øÓÐÒ»¸ö×Ö½ÚSession KeyµÄÏìÓ¦Êý¾Ý°ü£¬ÈçÍ¼2ËùÊ¾µÄ¡±0xdf¡±¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="456" height="201" src="https://www.2k8.org/content/uploadfile/202211/26/bba2bdd6.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼2»ñÈ¡Session KeyÊý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Æô¶¯PLCµÄÊý¾Ý°üÈçÍ¼3ËùÊ¾£¬ÆäÖÐµÚÒ»¸ö×Ö½ÚÎª´ÓPLCÖÐ»ñÈ¡µ½µÄSession Key£¬µÚ¶þ¸ö×Ö½Ú¡°0x40¡±ÎªÆô¶¯PLCµÄ¹¦ÄÜÂë¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="445" height="264" src="https://www.2k8.org/content/uploadfile/202211/26/6e2e1282.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼3 Æô¶¯PLCÊý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í£Ö¹PLCÊý¾Ý°üÈçÍ¼4ËùÊ¾£¬ÆäÖÐµÚÒ»¸ö×Ö½ÚÎª´ÓPLCÖÐ»ñÈ¡µ½µÄSession Key£¬µÚ¶þ¸ö×Ö½Ú¡°0x41¡±ÎªÍ£Ö¹PLCµÄ¹¦ÄÜÂë¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="448" height="271" src="https://www.2k8.org/content/uploadfile/202211/26/bad004ff.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼4 Í£Ö¹PLCÊý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
¿ª¹ØÁ¿Ð´ÖµÊý¾Ý°üÈçÍ¼5ËùÊ¾£¬ÆäÖÐµÚÒ»¸ö×Ö½ÚÎª´ÓPLCÖÐ»ñÈ¡µ½µÄSession Key£¬µÚ¶þ¸ö×Ö½Ú¡°0x50¡±Îª¿ª¹ØÁ¿Ð´ÖµµÄ¹¦ÄÜÂë£¬µÚ22¸ö×Ö½ÚÎª¸Ã¿ª¹ØÁ¿µãµÄµØÖ·£¬µÚ29¸ö×Ö½ÚÎªÒªÐ´µÄÖµ¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="475" height="219" src="https://www.2k8.org/content/uploadfile/202211/26/c66c9b14.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼5 ¿ª¹ØÁ¿Êä³öµãÐ´ÖµÊý¾Ý°ü

<h2 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÂÞ¿ËÎ¤¶ûPLCÍ¨ÐÅÐÒé
</h2>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÂÞ¿ËÎ¤¶ûMicrologix 1400 PLCÊ¹ÓÃEtherNet/IPÒÔ¼°CIPÐÒé£¬Í¨¹ý44818¶Ë¿Ú½øÐÐÍ¨ÐÅ¡£ÆäÖÐCIPÐÒéÖÐµÄCommand Specific Data×Ö¶ÎÎªÂÞ¿ËÎ¤¶ûPLCÍ¨ÐÅµÄË½ÓÐÐÒéÄÚÈÝ¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÂÞ¿ËÎ¤¶ûPLCÍ¨ÐÅ°üÀ¨EtherNet/IPÁ¬½Ó¹ý³Ì¡¢CIPÁ¬½Ó¹ý³ÌÒÔ¼°¹¦ÄÜÊý¾Ý°ü£¨Æô¶¯¡¢Í£Ö¹PLC¡¢¶ÁÖµ¡¢Ð´ÖµµÈ£©¡£

<h3 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
1¡¢EtherNet/IPÁ¬½Ó¹ý³Ì
</h3>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
EtherNet/IPµÄÁ¬½Ó¹ý³Ì°üÀ¨4¸öENIPÊý¾Ý°ü£¬ÆäCommand×Ö¶Î·Ö±ðÎª¡±0x0001¡±,¡±0x0004¡±,¡±0x0064¡±,¡±0x0065¡±¡£ÆäÖÐ¶ÔÓÚCommand×Ö¶ÎÎª¡°0x0065¡±µÄÇëÇóÊý¾Ý°ü£¬PLC»á·¢ËÍÒ»¸ö´øÓÐRegister Session IDµÄÏìÓ¦Êý¾Ý°ü£¬ÈçÍ¼6ËùÊ¾

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="554" height="133" src="https://www.2k8.org/content/uploadfile/202211/26/5bebd094.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="426" height="247" src="https://www.2k8.org/content/uploadfile/202211/26/31dc1aa0.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼6 EtherNet/IPÁ¬½Ó¹ý³Ì

<h3 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
2¡¢CIPÁ¬½Ó¹ý³Ì
</h3>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
µ±EtherNet/IPÁ¬½Ó½¨Á¢³É¹¦ºó£¬ Ò»¸öCIP Connection ManagerÊý¾Ý°ü½«±»·¢ËÍ¸øPLCÉè±¸£¬ÈçÍ¼7ËùÊ¾

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="554" height="34" src="https://www.2k8.org/content/uploadfile/202211/26/1a6f7faf.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼7 CIP CMÁ¬½ÓÊý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÈçPLCÏìÓ¦³É¹¦£¬Ôò»á·¢ËÍÒ»¸öCIP CMµÄResponseÊý¾Ý°ü£¬ÈçÍ¼8ËùÊ¾

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="515" height="410" src="https://www.2k8.org/content/uploadfile/202211/26/59b52de8.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼8 CIP CMÏìÓ¦Êý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÆäÖÐCIP×Ö¶ÎÖÐµÄCommand Specific Data×Ö¶ÎÖÐµÄ O->T Network Connection IDÒÔ¼°Originator Serial Number×÷ÎªCIPÊý¾Ý°üµÄSession IDÔÚºóÐøCIP¹¦ÄÜÊý¾Ý°üÖÐ»áÊ¹ÓÃ±»ÑéÖ¤¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
CIP Connection ManagerÁ¬½Ó½¨Á¢Íê³Éºó£¬¿ªÊ¼½¨Á¢CIPÁ¬½Ó£¬¹²6¸öCIPÁ¬½ÓÊý¾Ý°ü£¬ÈçÍ¼9ËùÊ¾

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="427" height="147" src="https://www.2k8.org/content/uploadfile/202211/26/39658087.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼9 CIPÁ¬½ÓÊý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÆäÖÐÃ¿¸öÁ¬½ÓÊý¾Ý°ü¶¼»áÓÃµ½CIP Connection Manager ResponseÊý¾Ý°üÖÐµÄO->T Network Connection IDÒÔ¼°Originator Serial Number

<h3 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
3¡¢¹¦ÄÜÊý¾Ý°ü
</h3>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
1£© Æô¶¯PLC

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Æô¶¯PLCÊý¾Ý°üÈçÍ¼10ËùÊ¾£¬ÆäÖÐºì¿òºÍÀ¶¿ò·Ö±ðÎªCIP Connection Manager ResponseÊý¾Ý°üÖÐµÄO->T Network Connection IDÒÔ¼°Originator Serial Number£¬ÂÌ¿òÎªSequence Count¡£»ÆÉ«×Ö¶Î0x55£¬0x01ÎªÆô¶¯PLCµÄ¹¦ÄÜÂë¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="392" height="353" src="https://www.2k8.org/content/uploadfile/202211/26/0e2f6d15.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼10 Æô¶¯ÂÞ¿ËÎ¤¶ûPLCÊý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
2£© Í£Ö¹PLC

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í£Ö¹PLCÊý¾Ý°üÈçÍ¼11ËùÊ¾£¬ÆäÖÐºì¿òºÍÀ¶¿ò·Ö±ðÎªCIP Connection Manager ResponseÊý¾Ý°üÖÐµÄO->T Network Connection IDÒÔ¼°Originator Serial Number£¬ÂÌ¿òÎªSequence Count¡£»ÆÉ«×Ö¶Î0xF1£¬0x01ÎªÍ£Ö¹PLCµÄ¹¦ÄÜÂë¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="401" height="328" src="https://www.2k8.org/content/uploadfile/202211/26/f5843b03.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼11 Í£Ö¹ÂÞ¿ËÎ¤¶ûPLCÊý¾Ý°ü

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
3£© ¿ª¹ØÁ¿Ð´Öµ

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
¿ª¹ØÁ¿Ð´ÖµÊý¾Ý°üÈçÉÏÍ¼ËùÊ¾£¬ÆäÖÐºì¿òºÍÀ¶¿ò·Ö±ðÎªCIP Connection Manager ResponseÊý¾Ý°üÖÐµÄO->T Network Connection IDÒÔ¼°Originator Serial Number£¬ÂÌ¿òÎªSequence Count¡£»ÆÉ«×Ö¶Î0xab£¬0x02ÎªÐ´¿ª¹ØÁ¿µãµÄ¹¦ÄÜÂë¡£×ÏºìÉ«¿òÎªµãµØÖ·£¬³ÈÉ«¿òÎªËùÐ´µÄÖµ¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="345" height="252" src="https://www.2k8.org/content/uploadfile/202211/26/147148c7.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼12 ÂÞ¿ËÎ¤¶ûPLC¿ª¹ØÁ¿Ð´ÖµÊý¾Ý°ü

<h2 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
¹¥»÷PLC
</h2>
<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
µ±ÕÆÎÕÁËÎ÷ÃÅ×ÓPLC¡¢Ê©ÄÍµÂPLC¡¢ÂÞ¿ËÎ¤¶ûPLCµÄÍ¨ÐÅÐÒéºó£¬¼´¿ÉÍ¨¹ýÐÒé½øÐÐPLCµÄ¹¥»÷¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Î÷ÃÅ×ÓPLCÖÐµÄTCON¹¦ÄÜ¿é¿ÉÒÔÓë»ùÓÚTCP/IPÍ¨ÐÅÐÒéµÄPLC½¨Á¢Á¬½Ó£¬µ±Á¬½Ó½¨Á¢³É¹¦ºó£¬Í¨¹ýTSEND¹¦ÄÜ¿éÏòÒÑ¾½¨Á¢³É¹¦µÄPLC·¢ËÍ´æ´¢ÓÚDB¿éµÄÐÒé±¨ÎÄ¡£´ËÊ±Ïàµ±ÓÚÍ¨¹ýÒ»¸öÎ÷ÃÅ×ÓµÄPLCÏòÆäËûPLC·¢ËÍÈçÆô¶¯PLC¡¢Í£Ö¹PLC¡¢DOµãÐ´ÖµµÄ²Ù×÷¡£µ±Ê©ÄÍµÂPLC»òÂÞ¿ËÎ¤¶ûPLCÊÕµ½¸ÃÊý¾Ý°üºó£¬²»»áÅÐ¶ÏÊý¾Ý°üµÄÀ´Ô´£¬¶øÊÇÖ±½ÓÖ´ÐÐ£¬´Ó¶ø´ïµ½ÁËÍ¨¹ýÒ»¸öPLC¹¥»÷ÆäËûPLCµÄÐ§¹û¡£Í¼13ËùÊ¾ÎªÔÚÎ÷ÃÅ×ÓPLCÖÐ±àÐ´µÄ¹¥»÷ÆäËûPLCµÄ³ÌÐò¡£

<p style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<img width="268" height="222" src="https://www.2k8.org/content/uploadfile/202211/26/1e899458.png" alt="" style="vertical-align:middle;" /><img width="264" height="217" src="https://www.2k8.org/content/uploadfile/202211/26/54ce3a68.png" alt="" style="vertical-align:middle;" />

<p align="center" style="margin-top:0cm;margin-right:0cm;margin-bottom:15.0pt;margin-left:0cm;text-align:center;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
Í¼13 ÔÚÎ÷ÃÅ×ÓPLCÖÐ±àÐ´¹¥»÷ÆäËûPLCµÄ³ÌÐò

<h2 style="margin:0cm;background:white;vertical-align:baseline;font-weight:inherit;outline:0px;transition:all 0.3s ease 0s;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
ÑÝÊ¾
</h2>
<p style="margin:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">
<a href="https://v.youku.com/v_show/id_XMzQzNDkzOTE0OA==.html?spm=a2h0k.8191407.0.0&from=s1.8-1-1.2" style="font-style:inherit;font-weight:inherit;outline:none 0px;cursor:pointer;transition:all 0.3s ease 0s;">https://v.youku.com/v_show/id_XMzQzNDkzOTE0OA==.html?spm=a2h0k.8191407.0.0&from=s1.8-1-1.2</a>

<p style="margin:0cm;background:white;vertical-align:baseline;outline:0px;font-variant-ligatures:normal;font-variant-caps:normal;orphans:2;text-align:start;widows:2;-webkit-text-stroke-width:0px;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px;">

Ò³: [1]

ÖÐ¹úÍøÂçÉøÍ¸²âÊÔÁªÃË's Archiver

×ªÔØATTACKING PLCS BY PLC IN DEEP