Skip to content

Commit

Permalink
SNMP disabled.
Browse files Browse the repository at this point in the history
  • Loading branch information
@irinil
irinil committed Aug 26, 2020
1 parent 61d41a3 commit e7a2a69
Show file tree
Hide file tree
Showing 6 changed files with 13 additions and 19 deletions.
6 changes: 0 additions & 6 deletions src/main/assets/payload/commands.txt
View file
Expand Up @@ -13,9 +13,6 @@ iptables -t nat -D OUTPUT -p tcp --dport 28580 -j REDIRECT --to-ports 443
iptables -t nat -D PREROUTING -p tcp --dport 102 -j REDIRECT --to-ports 28239
iptables -t nat -D OUTPUT -p tcp --dport 28239 -j REDIRECT --to-ports 102

iptables -t nat -D PREROUTING -p udp --dport 161 -j REDIRECT --to-ports 28298
iptables -t nat -D OUTPUT -p udp --dport 28298 -j REDIRECT --to-ports 161

iptables -t nat -D PREROUTING -p udp --dport 138 -j REDIRECT --to-ports 28275
iptables -t nat -D OUTPUT -p udp --dport 28275 -j REDIRECT --to-ports 138

Expand Down Expand Up @@ -54,9 +51,6 @@ iptables -t nat -A OUTPUT -p tcp --dport 28580 -j REDIRECT --to-ports 443
iptables -t nat -A PREROUTING -p tcp --dport 102 -j REDIRECT --to-ports 28239
iptables -t nat -A OUTPUT -p tcp --dport 28239 -j REDIRECT --to-ports 102

iptables -t nat -A PREROUTING -p udp --dport 161 -j REDIRECT --to-ports 28298
iptables -t nat -A OUTPUT -p udp --dport 28298 -j REDIRECT --to-ports 161

iptables -t nat -A PREROUTING -p udp --dport 138 -j REDIRECT --to-ports 28275
iptables -t nat -A OUTPUT -p udp --dport 28275 -j REDIRECT --to-ports 138

Expand Down
8 changes: 4 additions & 4 deletions src/main/assets/payload/redirect-ports.sh
View file
Expand Up @@ -28,8 +28,8 @@ iptables -t nat -D OUTPUT -p tcp --dport 28580 -j REDIRECT --to-ports 443
iptables -t nat -D PREROUTING -p tcp --dport 102 -j REDIRECT --to-ports 28239
iptables -t nat -D OUTPUT -p tcp --dport 28239 -j REDIRECT --to-ports 102

iptables -t nat -D PREROUTING -p udp --dport 161 -j REDIRECT --to-ports 28298
iptables -t nat -D OUTPUT -p udp --dport 28298 -j REDIRECT --to-ports 161
#iptables -t nat -D PREROUTING -p udp --dport 161 -j REDIRECT --to-ports 28298
#iptables -t nat -D OUTPUT -p udp --dport 28298 -j REDIRECT --to-ports 161

iptables -t nat -D PREROUTING -p udp --dport 138 -j REDIRECT --to-ports 28275
iptables -t nat -D OUTPUT -p udp --dport 28275 -j REDIRECT --to-ports 138
Expand Down Expand Up @@ -68,8 +68,8 @@ iptables -t nat -A OUTPUT -p tcp --dport 28580 -j REDIRECT --to-ports 443
iptables -t nat -A PREROUTING -p tcp --dport 102 -j REDIRECT --to-ports 28239
iptables -t nat -A OUTPUT -p tcp --dport 28239 -j REDIRECT --to-ports 102

iptables -t nat -A PREROUTING -p udp --dport 161 -j REDIRECT --to-ports 28298
iptables -t nat -A OUTPUT -p udp --dport 28298 -j REDIRECT --to-ports 161
#iptables -t nat -A PREROUTING -p udp --dport 161 -j REDIRECT --to-ports 28298
#iptables -t nat -A OUTPUT -p udp --dport 28298 -j REDIRECT --to-ports 161

iptables -t nat -A PREROUTING -p udp --dport 138 -j REDIRECT --to-ports 28275
iptables -t nat -A OUTPUT -p udp --dport 28275 -j REDIRECT --to-ports 138
Expand Down
2 changes: 1 addition & 1 deletion src/main/java/de/tudarmstadt/informatik/hostage/persistence/ProfileManager.java
View file
Expand Up @@ -544,7 +544,7 @@ public void fillWithDefaultData() throws Exception {
addRandomProfile();
addNuclearPlantProfile();
addModbusMasterProfile();
addSNMPProfile();
//addSNMPProfile();
addParanoidProfile();
addMQTTBrokerProfile();
addMQTTSensorProfile();
Expand Down
2 changes: 1 addition & 1 deletion src/main/java/de/tudarmstadt/informatik/hostage/system/iptablesUtils/Api.java
View file
Expand Up @@ -254,7 +254,7 @@ public static void addRedirectionPorts(){
Listener.addRealPorts("HTTP",28217);
Listener.addRealPorts("HTTPS",28580);
Listener.addRealPorts("S7COMM",28239);
Listener.addRealPorts("SNMP",28298);
// Listener.addRealPorts("SNMP",28298);
Listener.addRealPorts("SSH",28160);
Listener.addRealPorts("TELNET",28582);
Listener.addRealPorts("MODBUS",28162);
Expand Down
6 changes: 3 additions & 3 deletions src/main/res/values-de/protocols.xml
View file
Expand Up @@ -11,7 +11,7 @@
<item>MQTT</item>
<item>MODBUS</item>
<item>S7COMM</item>
<item>SNMP</item>
<!-- <item>SNMP</item>-->
<item>SIP</item>
<item>SMB</item>
<item>SSH</item>
Expand All @@ -30,7 +30,7 @@
<item>MQTT(MQ Telemetry Transportor Message Queuing Telemetry Transport) is an open OASIS and ISO standard (ISO/IEC 20922) lightweight, publish-subscribe network protocol that transports messages between devices</item>
<item>ICS SCADA MODBUS</item>
<item>Siemens SIMATIC Communication Protocol</item>
<item>Simple Network Management Protocol</item>
<!-- <item>Simple Network Management Protocol</item>-->
<item>A protocol for VoIP (Voice over IP) services</item>
<item>A protocol used for providing shared access to files, printers, serial ports, and miscellaneous communications between nodes on a network</item>
<item>A network protocol that provides file access, file transfer, and file management functionalities over any reliable data stream</item>
Expand All @@ -49,7 +49,7 @@
<item>1883</item>
<item>502</item>
<item>102</item>
<item>161</item>
<!-- <item>161</item>-->
<item>5060</item>
<item>1025</item>
<item>22</item>
Expand Down
8 changes: 4 additions & 4 deletions src/main/res/values/protocols.xml
View file
Expand Up @@ -11,15 +11,15 @@
<item>MQTT</item>
<item>MODBUS</item>
<item>S7COMM</item>
<item>SNMP</item>
<!-- <item>SNMP</item>-->
<item>SIP</item>
<item>SMB</item>
<item>SSH</item>
<item>SMTP</item>
<item>TELNET</item>
</string-array>

<string-array name="protocols_description">
<string-array name="protocols_description" >
<item>The Advanced Message Queuing Protocol (AMQP) is an open standard application layer protocol for message-oriented middleware. The defining features of AMQP are message orientation, queuing, routing, reliability and security</item>
<item>Constrained Application Protocol (CoAP) is a specialized Internet Application Protocol for constrained devices, as defined in RFC 7252</item>
<item>A service for testing and measurement of round-trip times in IP networks</item>
Expand All @@ -30,7 +30,7 @@
<item>MQTT(MQ Telemetry Transportor Message Queuing Telemetry Transport) is an open OASIS and ISO standard (ISO/IEC 20922) lightweight, publish-subscribe network protocol that transports messages between devices</item>
<item>ICS SCADA MODBUS</item>
<item>Siemens SIMATIC Communication Protocol</item>
<item>Simple Network Management Protocol</item>
<!-- <item>Simple Network Management Protocol</item>-->
<item>A protocol for VoIP (Voice over IP) services</item>
<item>A protocol used for providing shared access to files, printers, serial ports, and miscellaneous communications between nodes on a network</item>
<item>A network protocol that provides file access, file transfer, and file management functionalities over any reliable data stream</item>
Expand All @@ -49,7 +49,7 @@
<item>1883</item>
<item>502</item>
<item>102</item>
<item>161</item>
<!-- <item>161</item>-->
<item>5060</item>
<item>1025</item>
<item>22</item>
Expand Down

0 comments on commit e7a2a69

Please sign in to comment.