Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
node-red-contrib-modbustcp
Advanced tools
Node-RED nodes for communicating with a MODBUS TCP Server.
Node-Red Modbus TCP nodes for communicating with a Modbus TCP server.
Based on jsmodbus.
Run the following command in the root directory of your Node-RED install
npm install node-red-contrib-modbustcp
In addition, you can pass in a msg with one or more payload settings to initiate additional modbus read events.
msg.payload = {
"name": "Name1", // Should be a unique name
"topic": "topic1", // Override default topic
"dataType": "FC3", // can be format 3, "FC3", or "Coil"
"address": 0, // starting address
"quantity": 4, // # of units to read
"interval": 3000, // polling interval in milliseconds
"ieeeType": "off", // valid values are "off", "single" or "double"
"ieeeBE": true // Big Endian format, true/false. false = little endian
}
Most of the values are optional and server to override the defaults set in the nodes config.
Values for dataType inlcude:
If you pass in a msg with a payload.name that is the same as one previously passed in, the new values will replace the old. For example, it is possible to change the polling interval of an existing event by passing in the same msg structure with a different "interval" setting.
Note: The IEEE 754 formatting is not applied to binary data types such as "Coil" and will be ignored for those.
Note: Setting ieeeBE = false will for the node to read the inputs as "little endian".
Stop/Kill You can stop or kill the polling of a modbus item by passing in the following:
The polled event with the same name given will be stopped if the kill=true is also passed in.
In addition to passing in a payload value for writing, you can also pass in the following in your msg to override the configured defaults:
example message input:
msg = {
address: 8,
dataType: "Coil",
payload: 1
}
FAQs
Node-RED nodes for communicating with a MODBUS TCP Server.
We found that node-red-contrib-modbustcp demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.