ICS/SCADA/PLC Google/Shodanhq Cheat Sheet

http://www.slideshare.net/qqlan/icsscadaplc-googleshodanhq-cheat-sheet

ICS/SCADA/PLC Google/Shodanhq Cheat Sheet

1. ICS/SCADA/PLC Google/Shodanhq Cheat Sheet Gleb Gritsai, Alexander Timorin, Yuri Goltsev, Roman Ilin http://scadastrangelove.org/
2. vendor product google dork network infoSiemens S7-200 all models: tcp/udp/102 (by vuln info) S7-300 snmp: Siemens, SIMATIC, S7 S7-3** , PCS7 inurl:/Portal0000.htm http: /S7Web.css Simatic S7 snmp: Siemens, SIMATIC S7, CPU-1200 Siemens, SIMATIC S7, CPU317-2 PN/DP Siemens, SIMATIC S7, CPU315-2 PN/DP
3. Siemens, SIMATIC S7 *** inurl:"Portal/Portal.mwsl" http: /S7Web.cssAutomation License Manager tcp/4410 (by vuln info)Scalance S,X Security Module firewall telnet: Simatic, Scalance snmp: Scalance S*, Scalance W*, Scalance X* DCP protocol (by vuln info) tcp/80 netbios: WINCC_SRV21 <0x0> SIEMENS <0x0>Wincc flexible WINCC_SRV21 <0x20>Wincc flexible runtime / TIA Portal tcp/2308 (by vuln info) tcp/50523 (by vuln info)
4. Synco OZW (Web server) httpSIMATIC HMI Miniweb intitle:"Miniweb Start Page" | "/CSS/Miniweb.css" http: /CSS/Miniweb.cssSimatic HMI snmp: Siemens, SIMATIC HMI, *** telnet:Welcome to the Windows CE Telnet Service on HMI_Panel
5. vendor product google dork network info DeltaV and DeltaV Workstations/DeltaVEmerson ProEssentials Scientific Graph tcp/udp/111 (by vuln info) DeltaV Service Information System Ver3.3 vendor product google dork network infoAllen-BradleyRockwell Automation ControlLogix tcp/udp/44818 , http CompactLogix intitle:"Rockwell Automation" "Device Name" "Uptime"
6. PLC5 http, snmp inurl:dtm.html intitle:1747-L552 SLC-5 inurl:dtm.html intitle:1747-L551 http, snmp Micrologix inurl:home.htm intitle:1766 http, snmp vendor product shodanhq dork network infoSchneider Electric PM820SD Schneider Electric – PM820SD port:161 PM870SD Schneider Electric – PM870SD port:161 ECC21 Schneider Electric – ECC21 port:161 EGX100MG Schneider Electric – EGX100MG port:161 PowerLogic PM800 PowerLogic PM800 port:80 PowerLogic ION8650 A/B/C ION8650
7. PowerLogic ION8650 A/B/C) 8650 IONPowerLogic ION8600 8600 IONPowerLogic ION7650/7550 ION 7550PowerLogic ION7650/7550 ION 7650PowerLogic ION7300 ION 7300PowerLogic ION6200 ION6200PowerLogic PM1200 PM1200PowerLogic DM6200 DM6200Powerlogic EnerceptPowerlogic Energy MeterPowerLogic Branch CurrentMonitor BCM42PowerLogic EM4800
8. PowerLogic E5600 PowerLogic Ethernet Gateway (EGX) EGX100 PowerLogic EGX300 EGX300 PowerLogic ION7550RTU ION 7550RTU schneider electric vendor product google dork network infoSchneider Electric Modicon intitle:"Quantum CPU Web Server" Quantum/Premiun/Micro intitle:"Premium CPU Web Server" intitle:"Citect Web" inurl:scada CitectSCADA filetype:htm CitectFacilities shodanhq: ClearSCADA "ViewXCtrl is not supported in this web browser." ClearSCADA intitle:"ClearSCADA Home" UnitelWay Device Driver
9. Vijeo Historian Web Server several products Modicon M340 snmp: "Modicon M340" vendor product google dork network infoGeneralElectric Cimplicity intitle:"CIMPLICITY WebView" inurl:main.html http Proficy inurl:ProficyPortal/default.asp http

ICS/SCADA/PLC Google/Shodanhq Cheat Sheet

Share this: