Altered codesys protocol

.gitignore

+*.pyc
+*.cypython-311.pyc
+assets.json
+migrations
\ No newline at end of file

protocol_discover_helpers/codesys_discover.py

+def protocol_identify(hex_pkt):
+    if (b'bbbb' in hex_pkt and hex_pkt[108:112] == b'bbbb'):
+        return ":codesys"
\ No newline at end of file

protocol_enumerators/codesys.py

-import binascii
-from scapy.all import *
 import socket
+import binascii
+
+def action(host, port):
+    # CoDeSyS little endian query
+    lile_query = binascii.unhexlify("bbbb0100000001")
+    # CoDeSyS big endian query
+    bige_query = binascii.unhexlify("bbbb0100000101")
+    
+    # Create a socket
+    sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+    
+    try:
+        # Connect to the remote host
+        sock.connect((host, port))
+        
+        # Send the little endian query
+        sock.send(lile_query)
+        
+        # Receive the response
+        response = sock.recv(1024)
+        
+        # If there was no response, try the big endian query
+        if not response:
+            sock.send(bige_query)
+            response = sock.recv(1024)
+        
+        # Check if the response starts with 0xbb
+        if response and response[0] == 0xbb:
+            # Extract the null-terminated strings (OS Name, OS Type, Product Type)
+            os_name_end = response.find(b'\x00', 64)
+            os_name = response[64:os_name_end].decode()
+            
+            os_type_end = response.find(b'\x00', 96)
+            os_type = response[96:os_type_end].decode()
+            
+            product_type_end = response.find(b'\x00', 128)
+            product_type = response[128:product_type_end].decode()
+            
+            # Close the socket
+            sock.close()
+            
+            output = {
+                "OS Name": os_name,
+                "Product Type": product_type,
+                "Device IP":host,
+                "Port":port
+            }
+            return output
+        
+    except Exception as e:
+        print(f"Error: {e}")
+        return None
 
-def action(host,port):
-	output={}
-	cotp=binascii.unhexlify('0300001611e00000001400c1020100c2020102c0010a')
+def get_info(ip,port):
+	return(action(ip,port))
\ No newline at end of file
-	alt_COTP = binascii.unhexlify("0300001611e00000000500c1020100c2020200c0010a")
-	ROSCTR_Setup = binascii.unhexlify("0300001902f08032010000000000080000f0000001000101e0")
-	Read_SZL = binascii.unhexlify("0300002102f080320700000000000800080001120411440100ff09000400110001")
-	first_SZL_Request = binascii.unhexlify("0300002102f080320700000000000800080001120411440100ff09000400110001")
-	second_SZL_Request = binascii.unhexlify("0300002102f080320700000000000800080001120411440100ff090004001c0001")
-	response=None
-	pkt = Ether(cotp)
-	MESSAGE = pkt
-	s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
-	try:
-		s.settimeout(3)
-		s.connect((host,port))
-	except:
-		return False
-	response=send_receive(s,cotp)
-	if(response):
-		if(hex(response[5])!="0xd0"):
-			s.close()
-			s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
-			s.connect((host,port))
-			response=send_receive(s,alt_COTP)
-			if(response):
-				if(hex(response[5])!="0xd0"):
-					return False
-	response  = send_receive(s,ROSCTR_Setup)
-	if(response):
-		if(hex(response[7])!="0x32"):
-			return False
-	response  = send_receive(s,Read_SZL)
-	if(response):
-		if(hex(response[7])!="0x32"):
-			return False
-	response  = send_receive(s, first_SZL_Request)
-	try:
-		output = first_parse_response(response,output)
-	except:
-		return False
-	response = send_receive(s, second_SZL_Request)
-	output=second_parse_response(response,output)
-	output["DeviceIP"]=host
-	output["Port"]=port
-	return output
\ No newline at end of file