module

Allen-Bradley/Rockwell Automation EtherNet/IP CIP Commands

Try Surface Command
Back to search
Disclosed
2012-01-19
Created
2018-05-30

Description

The EtherNet/IP CIP protocol allows a number of unauthenticated commands to a PLC which
implements the protocol. This module implements the CPU STOP command, as well as
the ability to crash the Ethernet card in an affected device.

This module is based on the original 'ethernetip-multi.rb' Basecamp module
from DigitalBond.

Authors

Ruben Santamarta ruben@reversemode.com
K. Reid Wightman wightman@digitalbond.com
todb todb@metasploit.com

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:


    msf > use auxiliary/admin/scada/multi_cip_command
    msf auxiliary(multi_cip_command) > show actions
        ...actions...
    msf auxiliary(multi_cip_command) > set ACTION < action-name >
    msf auxiliary(multi_cip_command) > show options
        ...show and set options...
    msf auxiliary(multi_cip_command) > run
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today