Attack framework for security testing of industrial control systems

OData support
Dr. Buttyán Levente
Department of Networked Systems and Services

This document introduces an attacking framework that cames as a Metasploit module specialized against Industrial Control Systems (ICS) presenting examples on how to use it, and examples of threats it is able to make. The techniques and methods described in this document are based on a white paper written by Dillon Beresford, who was one of the firsts to publish weaknesses of these control systems and networks in his presentation at Black Hat USA+2011. Most of these weaknesses are consequences of inproper design and false assumptions and approaches on security, leaving the systems and the processes they control exposed and easily exploitable to anyone even with minimal knowledge on topics of networking, security and cryptography, and requiring only access to the (control) network, that can be more easily achieved than one think. The framework consist of a set of functions making one able to exploit Siemens Simatic Step7 Programmable Logic Controllers (PLC), but these functions can be easily modified to support other devices and protocols.


Please sign in to download the files of this thesis.