SCADA/Modicon/Schneider TM221
#4
I’ve done some more recon and have located the DH key exchange from both the client and the server as well as the hashed password in a given session. I used Wireshark to capture the data.

The DH keys are 4 bytes long. Am I correct in saying that the prime number used is 109 and the generator is 4? Once I can calculate the DH exchange the result will be the XOR key used to encrypt the SHA256 hash.

Any guidance or tips would be great! Absolute beginner here…
Reply


Messages In This Thread
SCADA/Modicon/Schneider TM221 - by piehole1983 - 09-06-2024, 11:45 PM
RE: SCADA/Modicon/Schneider TM221 - by nick8606 - 09-07-2024, 05:42 AM
RE: SCADA/Modicon/Schneider TM221 - by piehole1983 - 09-11-2024, 01:31 PM