Mission 12 (10 pts). What is the PLC password contained in the PLF file?
- This mission asks us to find the PLC password contained in the PLF file. A PEData.plf is a Siemens PLC project file. Let’s find out where these files are in the file system.
- Open up a new Terminal window
- We need to search the entire filesystem as we do not know where this file may be located. In the Terminal window, type in the following command and press Enter.
find / -name *.plf - You should get the same results as below
- The folder /opt/CybatiWorks/Labs/passwords looks interesting. In the Terminal window, type in the following command and press Enter.
cd /opt/CybatiWorks/Labs/passwords - Type in the following command to list the contents of the folder and press Enter.
ls -ls - You may have a similar set of files. The password within a PEData.plf file can be retrieved using the “s7_password_hashes_extractor.py” Python script. The source for this Python script can be found at: https://github.com/atimorin/PoC2013/blob/master/S7/s7_password_hashes_extractor.py.
- If you run the script without any arguments, you get the following output:
- Based on the help text above, we need to point the script to the PEData.plf file as below
- From the output of the command above, it would appear that the password contained in the PEData.plf is “123” to answer Mission 12.
No comments:
Post a Comment