s7scan Logo

s7scan

0
Free
Visit Website

s7scan is a tool written in Python that scans networks, enumerates Siemens PLCs, and gathers basic information about them, such as PLC firmware and hardware version, network configuration, and security parameters. It uses the S7 protocol to connect to PLCs, specifically performing 'Read SZL' requests to obtain controller information. The tool can identify active PLCs, retrieve details like PLC type, software and hardware versions, protection settings, and network configuration. It supports both TCP/IP and LLC transport protocols and can be built as a stand-alone binary with pyinstaller. s7scan is based on the 'plcscan' utility by Dmitry Efanov (Positive Research).

FEATURES

ALTERNATIVES

A tool for classifying packets into flows based on 4-tuple without additional processing.

A low-interaction honeypot for detecting and analyzing potential attacks on Android devices via ADB over TCP/IP

A fast and flexible HTTP enumerator for content discovery and credential bruteforcing

A simple IOC scanner bash script for Linux/Unix/OSX systems

Network Dump data Displayer and Editor framework for tcpdump trace files manipulation.

OpenSnitch is a GNU/Linux application firewall with interactive outbound connections filtering and system-wide domain blocking capabilities.

An API for constructing and injecting network packets with additional functionality.

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)