44818 - Ethernet Ip

💡 学习提示: 本文档介绍 44818 - Ethernet/IP 的渗透测试方法,适合信息安全初学者和从业人员参考。

⚠️ 法律声明: 本文档仅供学习和授权测试使用。未经授权的系统测试可能违反法律法规。

⚠️ 法律声明: 本文档仅供学习和授权测试使用。未经授权的系统测试可能违反法律法规。

44818 渗透测试 EtherNet/IP

协议 Information

EtherNet/IP is an industrial Ethernet networking protocol commonly used in industrial automation control systems. It was developed by Rockwell Automation in the late 1990s and is managed by ODVA. The protocol ensures multi-vendor system interoperability and is utilized in various applications such as water processing plants, manufacturing facilities, and utilities. To identify an EtherNet/IP device, a query is sent to TCP/44818 with a list Identities Message (0x63).

默认 port: 44818 UDP/TCP

PORT      STATE SERVICE
44818/tcp open  EtherNet/IP

信息收集

nmap -n -sV --script enip-info -p 44818 <IP>
pip3 install cpppo
python3 -m cpppo.server.enip.list_services [--udp] [--broadcast] --list-identity -a <IP>

Shodan

  • port:44818 "product name"

搜索引擎语法

FOFA

# FOFA 搜索语法
port="44818"

Shodan

# Shodan 搜索语法
port:44818

ZoomEye

# ZoomEye 搜索语法
port:44818

📖 参考资料