-
Notifications
You must be signed in to change notification settings - Fork 15
/
README
24 lines (18 loc) · 1009 Bytes
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
ISO over TCP / S7Comm protocol analyzer.
Based on the Wireshark dissector written by Thomas Wiens
https://github.com/wireshark/wireshark/blob/master/epan/dissectors/packet-s7comm.h
https://github.com/wireshark/wireshark/blob/master/epan/dissectors/packet-s7comm.c
https://github.com/wireshark/wireshark/blob/master/epan/dissectors/packet-s7comm_szl_ids.h
https://github.com/wireshark/wireshark/blob/master/epan/dissectors/packet-s7comm_szl_ids.c
https://sourceforge.net/projects/s7commwireshark/
partially on the PoC S7Comm-Bro-Plugin written by György Miru
https://github.com/CrySyS/bro-step7-plugin/blob/master/README.md,
RFC 1006 (ISO Transport Service on top of the TCP)
https://tools.ietf.org/html/rfc1006
and RFC 905 (ISO Transport Protocol Specification)
https://tools.ietf.org/html/rfc0905
Author: Dane Wullen
Date: 02.06.2023
Version: 1.1
This plugin was a part of a master's thesis written at Fachhochschule in Aachen (Aachen University of Applied Sciences)
Rewritten for Zeek version 5.0.9