You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Control Systems Digger digs into data found on Shodan.
3
3
4
-
Currently scanning via KNXnet/IP (Tunneling) is implemented. See **csdig-knx**. csdig-knx is used for reconnaissance and mapping of KNX TP networks behind KNXnet/IP (Tunneling) controllers.
5
-
6
-
Please see also the [wiki](https://github.com/uwedisch/csdig/wiki) for further info about csdig.
4
+
Currently scanning via KNXnet/IP (Tunneling) is implemented via **csdig-knx**. csdig-knx is used for reconnaissance and mapping of KNX TP networks behind KNXnet/IP (Tunneling) controllers.
7
5
8
6
## csdig-knx
9
7
csdig-knx is a Bash script: <code>csdig.sh</code>.
10
8
11
9
### Intention
12
-
Scanning with csdig-knx is much more robust than scanning with KNXmap itself. Obstacles while scanning in the wild are:
13
-
* Missing compatibility (not all KNXnet/IP / KNX TP devices are certified)
10
+
Scanning with csdig-knx is more robust than scanning with KNXmap itself because intention of csdig-knx is to circumvent the weaknesses of communication over an unreliable protocol like UDP. Obstacles while scanning in the wild are:
11
+
* Missing compatibility (not all KNXnet/IP / KNX TP devices are certified and therefore do not stick to the definitions)
14
12
* High latencies (running into timeouts)
15
13
* Network congestions (loss of datagrams)
16
14
* KNXmap itself isn't perfect (knwon issues)
17
15
16
+
The intention of csdig-knx is also to go deeper into KNX networks than Shodan does.
17
+
18
18
### Requirements
19
-
KNXmap fork found at https://github.com/uwedisch/knxmap because of several bug fixes that are currently not included in the original KNXmap.
19
+
KNXmap fork found at https://github.com/uwedisch/knxmap because of bug fixes that are currently not included in the original KNXmap.
20
20
21
21
python-shodan installed with <code>sudo apt-get python-shodan</code>.
22
22
@@ -27,10 +27,13 @@ Finally you also need an account with [Shodan](https://www.shodan.io).
27
27
### Execution
28
28
Called without any parameter csdig-knx searches on Shodan for the keyword <code>knx</code> and traverses thru all results. Each result, i.e. KNXnet/IP (Tunneling) aware controller, is scanned for reachable KNX TP devices on it's configured KNX TP line. Each reachable KNX TP device is also scanned. Together all output is written to the directory <code>data</code>.
29
29
30
-
Use argument '-h' or '--help' for help on how to work with <code>csdig-knx.sh</code>.
30
+
Use arguments '-h' or '--help' for help on how to work with <code>csdig-knx.sh</code>.
31
31
32
32
### Configuration
33
33
Configuration is done via file <code>csdig.conf</code>.
34
34
35
35
### Compatibility
36
36
Tested on Kali Linux 2020.1 Release and on Ubuntu 16.04 LTS. Tested in local environment against WAGO | Controller KNX IP (750-889), Viessmann Vitogate 200, type KNX and against knxd.
37
+
38
+
## Further Details of csdig
39
+
Please consult also the [wiki](https://github.com/uwedisch/csdig/wiki) for further details about csdig.
0 commit comments