Delve into a critical cybersecurity presentation that reverse-engineers the Siemens S7-1500 Software Controller PLC, exposing vulnerabilities in its communication protocol. Explore how fundamental security principles are violated and examine the ineffective obfuscation and cryptography modifications implemented. Gain insights into the persistent security weaknesses of industrial control systems a decade after the Stuxnet incident. Learn from security researchers Tom Dohrmann and Colin Finck as they demonstrate the ongoing challenges in securing critical infrastructure against potential cyber attacks.
A Decade After Stuxnet - How Siemens S7 is Still an Attacker's Heaven
Overview
Syllabus
A Decade After Stuxnet: How Siemens S7 is Still an Attacker's Heaven
Taught by
Black Hat
Related Courses
-
Breaking Siemens SIMATIC S7 PLC Protection Mechanism
-
Rogue7 - Rogue Engineering-Station Attacks on S7 Simatic PLCs
-
Debug7 - Leveraging a Firmware Modification Attack for Remote Debugging of Siemens S7 PLCs
-
Cybersecurity: Keeping the Lights On - Practical Challenges in Utilities - Keynote
-
Vulnerability Assessments on SCADA Systems: How I Owned the Power Grid - Lecture 3
-
OT Cybersecurity for IT Professionals - Understanding ICS Environments
