Skip to content

claroty/MMS-Stack-Detector

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
resources
resources
 
 
README.md
README.md
 
 
mms_stack_detector.py
mms_stack_detector.py
 
 
mms_structs.py
mms_structs.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

MMS protocol stack detector

Manufacturing Message Specification (MMS) is an international standard (ISO 9506) dealing with messaging systems for transferring real time process data and supervisory control information between networked devices or computer applications. From Wikipedia

MMS is popular protocol and multiple implementations exists in the market. It may be desirable to be able to indentify the specific implementation when performing a vulnerability research in order to better understand the attack surface. This tool is able to detect the most common MMS implementation stacks.

Installation:

git clone https://github.com/claroty/MMS-Stack-Detector.git
cd MMS-Stack-Detector
python3 -m pip install -r requirements.txt

Usage:

python3 mms_stack_detector.py --help
usage: mms_stack_detector.py [-h] [--server_ip SERVER_IP] [--from_file FROM_FILE] [--print_all_services]

MMS Stack Detector

options:
  -h, --help            show this help message and exit
  --server_ip SERVER_IP
                        Server/Device IP address
  --from_file FROM_FILE
                        Specify file path of IP addresses separated by newline
  --print_all_services  Whether to print the services along with the detected MMS stack

Examples:

python3 mms_stack_detector.py --server_ip 10.10.10.10 --print_all_services

python3 mms_stack_detector.py --from_file /path/to/list_of_ip_addr > results.txt

Example output:

-------------------------- MMS Stack Detector ---------------------------
---------------------------[  10.10.10.10  ]-----------------------------

[*] Server Identification 
        Vendor Name: libiec61850.com
        Model: NxD
        Version: 1.5.0
-------------------------------------------------------------------------
[*] MMS Stack: LibIEC61850 Sig [0xee1c000000000000000118]
=========================================================================

Supported stacks

How to add additional stack to the detector

The stack detection is based on a subset of supported services. Those services are sent in InitiateResponse packet. If this subset of services is unique for this server, the the server can be identified. The following are the steps to be done to add new server to the detector:

  • Send a proper MMS InitiateRequest to the newly configured server
  • Review the services in the InitiateResponse
  • Convert the services to the sequental bitmap
  • If the bit sequence do not exist in known_signatures (the new server can be identified!), add the new sequence to the known_signatures struct .

Dependencies

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

8 stars

Watchers

6 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages