Overview
This course covers the learning outcomes and goals of understanding SCADA systems, identifying security challenges, exploring SCADA protocols like MODBUS and DNP3, learning about attacks on SCADA components, and reviewing real-world examples of security controls. The course teaches skills such as using an open-source SCADA scanning tool, analyzing SCADA protocols, and implementing security measures. The teaching method includes presentations, examples of exploits, and a packet-level dive into SCADA protocols. The intended audience for this course is individuals interested in SCADA security, control systems, and critical infrastructure.
Syllabus
Introduction
Agenda
Background
SCADA Systems
Accidents
Insider Threats
Advanced Persistent Threats
SCADA Framework
Sensors
Data Conversion
Data Communication
Threats
Field Equipment
Communication
Modbus
Models
Function Codes
Script
Wireshark
Firefox
Confidentiality
Modbus DNP3
Confidentiality Integrity Availability
No Authentication
No patching
Best Practices
SCADA Scan Tool
Taught by
Hack in Paris