EAAS/NFV>> aztarna>> 返回
项目作者: aliasrobotics

项目描述 :
aztarna, a footprinting tool for robots.
高级语言: Python
项目地址: git://github.com/aliasrobotics/aztarna.git
创建时间: 2018-08-23T07:05:44Z
项目社区:https://github.com/aliasrobotics/aztarna
开源协议:GNU General Public License v3.0
下载


This repository has been archived and is not maintained any further. Refer to alurity for future progress on robot footprinting and fingerprinting.

aztarna

This repository contains Alias Robotics’ aztarna, a footprinting tool for robots.

Alias Robotics supports original robot manufacturers assessing their security and improving their quality of software. By no means we encourage or promote the unauthorized tampering with running robotic systems. This can cause serious human harm and material damages.

PyPI version Documentation Status Article

For ROS

  • A list of the ROS nodes present in the system (Publishers and Subscribers)
  • For each node, the published and subscribed topis including the topic type
  • For each node, the ROS services each of the nodes offer
  • A list of all ROS parameters present in the Parameter Server
  • A list of the active communications running in the system. A single communication includes the involved publiser/subscriber nodes and the topics

For SROS

  • Determining if the system is a SROS master.
  • Detecting if demo configuration is in use.
  • A list of the nodes found in the system. (Extended mode)
  • A list of allow/deny policies for each node.
    • Publishable topics.
    • Subscriptable topics.
    • Executable services.
    • Readable parameters.

For ROS2 (Funded under the ROSIN project)

  • A list of ROS2 nodes present in each communication domains.
  • A list of discovered topics on each communication domain.
  • A list of discovered services on each communication domain.
  • For each node, the relationship of published and subscribed topics.
  • For each node, the services provided by that node.

For Industrial routers

  • Detecting eWON, Moxa, Sierra Wireless and Westermo industrial routers.
  • Default credential checking for found routers.

For ROS Industrial packages (Funded under the ROSIN project)

  • Detection of ROS Industrial Hosts.
  • Manufacturers:
    • ABB
    • Fanuc
    • Kuka

Installing

For production

Direcly from PyPi

  1. pip3 install aztarna

or from the repository:

  1. pip3 install .

For development

  1. pip3 install -e .

or

  1. python3 setup.py develop

Python 3.6 and the setuptools package is required for installation.
Python 3.7 is recommended.

ROS2 Module

For usage of the ROS2 footprinting module a ROS2 installation is required. Source the setup.bash script prior to launch.

Install with docker

  1. docker build -t aztarna_docker .

Code usage:

  1. usage: aztarna [-h] -t TYPE [-a ADDRESS] [-p PORTS] [-i INPUT_FILE]
  2.                [-o OUT_FILE] [-e] [-r RATE] [-d DOMAIN] [--daemon] [--hidden]
  3.                [--shodan] [--api-key API_KEY] [--passive PASSIVE]
  5. Aztarna
  7. optional arguments:
  8.   -h, --help            show this help message and exit
  9.   -t TYPE, --type TYPE  <ROS/ros/SROS/sros/ROS2/ros2/IROUTERS/irouters> Scan
  10.                         ROS, SROS, ROS2 hosts or Industrial routers
  11.   -a ADDRESS, --address ADDRESS
  12.                         Single address or network range to scan.
  13.   -p PORTS, --ports PORTS
  14.                         Ports to scan (format: 13311 or 11111-11155 or
  15.                         1,2,3,4)
  16.   -i INPUT_FILE, --input_file INPUT_FILE
  17.                         Input file of addresses to use for scanning
  18.   -o OUT_FILE, --out_file OUT_FILE
  19.                         Output file for the results
  20.   -e, --extended        Extended scan of the hosts
  21.   -r RATE, --rate RATE  Maximum simultaneous network connections
  22.   -d DOMAIN, --domain DOMAIN
  23.                         ROS 2 DOMAIN ID (ROS_DOMAIN_ID environmental
  24.                         variable). Only applies to ROS 2.
  25.   --daemon              Use rclpy daemon (coming from ros2cli).
  26.   --hidden              Show hidden ROS 2 nodes. By default filtering
  27.                         _ros2cli*
  28.   --shodan              Use shodan for the scan types that support it.
  29.   --api-key API_KEY     Shodan API Key
  30.   --passive PASSIVE     Passive search for ROS2

Run the code (example input file):

  1. aztarna -t ROS -p 11311 -i ros_scan_s20.csv

Run the code with Docker (example input file):

  1. docker run -v <host_path>:/root -it aztarna_docker -t ROS -p 11311 -i <input_file>

Run the code (example single ip address):

  1. aztarna -t ROS -p 11311 -a 115.129.241.241

Run the code (example subnet):

  1. aztarna -t ROS -p 11311 -a 115.129.241.0/24

Run the code (example single ip address, port range):

  1. aztarna -t ROS -p 11311-11500 -a 115.129.241.241

Run the code (example single ip address, port list):

  1. aztarna -t ROS -p 11311,11312,11313 -a 115.129.241.241

Run the code with ROS 2 (example exploring all ranges, 0-231)

  1. aztarna -t ROS2

Run the code with ROS 2 with ROS_DOMAIN_ID=15

  1. aztarna -t ROS2 -d 15

Run the code with ROS 2 using rclpy ros2cli daemon and with ROS_DOMAIN_ID=0 while showing hidden nodes

  1. aztarna -t ros2 -d 0 --daemon --hidden

Run de code with ROS 2 using passive mode to search the hosts. if you set ‘any’ as argument, is going to search on all interfaces in your system:

  1. aztarna -t ros2 --passive any

Run the code (example piping directly from zmap):

  1. zmap -p 11311 0.0.0.0/0 -q | aztarna -t SROS -p 11311

Run the code (example search for industrial routers in shodan)

  1. aztarna -t IROUTERS --shodan --api-key <yourshodanapikey>

Run the code (example search for industrial routers in shodan, piping to file)

  1. aztarna -t IROUTERS --shodan --api-key <yourshodanapikey> -o routers.csv

Cite our work

If you’re using our work for your research, please cite us as:

  1. @ARTICLE{2018arXiv181209490V,
  2.   author = {{Vilches}, V{\'\i}ctor Mayoral and {Mendia}, Gorka Olalde and
  3.   {Baskaran}, Xabier Perez and {Cordero}, Alejandro Hern{\'a}ndez
  4.   and {Juan}, Lander Usategui San and {Gil-Uriarte}, Endika and
  5.   {de Urabain}, Odei Olalde Saez and {Kirschgens}, Laura Alzola},
  6.   title = "{Aztarna, a footprinting tool for robots}",
  7.   journal = {arXiv e-prints},
  8.   keywords = {Computer Science - Cryptography and Security, Computer Science - Robotics},
  9.   year = 2018,
  10.   month = Dec,
  11.   eid = {arXiv:1812.09490},
  12.   pages = {arXiv:1812.09490},
  13.   archivePrefix = {arXiv},
  14.   eprint = {1812.09490},
  15.   primaryClass = {cs.CR},
  16.   adsurl = {https://ui.adsabs.harvard.edu/\#abs/2018arXiv181209490V},
  17.   adsnote = {Provided by the SAO/NASA Astrophysics Data System}
  18. }


rosin_logo

Supported by ROSIN - ROS-Industrial Quality-Assured Robot Software Components.
More information: rosin-project.eu

eu_flag

This repository was partly funded by ROSIN RedROS2-I FTP which received funding from the European Union’s Horizon 2020
research and innovation programme under the project ROSIN with the grant agreement No 732287.