Overview
Dive into the world of Industrial Control Systems (ICS) security with this hands-on workshop focused on penetration testing Programmable Logic Controllers (PLCs). Learn the intricacies of SCADA networks and gain practical experience attacking real devices. Explore the main components and common security flaws in industrial control systems, and discover how PLCs communicate with SCADA systems. Master methods and tools for exploiting vulnerabilities in these critical infrastructures. Apply your newfound knowledge in real-world scenarios by attacking a Siemens S7-1200 PLC and a Schneider m340. Cover essential topics including Metasploit Console usage, live testing, Nmap scanning, PLC scanning, SNMP exploitation, web interface vulnerabilities, and specific attack techniques for Schneider and Siemens PLCs.
Syllabus
Introduction
Metasploit Console
Live Tests
Nmap
PLC Scan
SNMP
Web Interface
Schneider
Siemens
Other options
Conclusion
Taught by
Black Hat