SCADA Pentesting (Brucon)
English | Size: 4.04 GB
Category: TUtorial
This is not your traditional SCADA security course! This course teaches hands-on penetration testing techniques used to test embedded electronic field devices, network protocols, RF communications, and controlling servers of ICS and Smart Grid systems like PLCs, RTUs, smart meters, Home Area Networks (HAN), smart appliances, SCADA, substation automation, and synchrophasors. This course is structured around the formal penetration testing methodology created by the National Energy Sector Cybersecurity Organization Resource (NESCOR), a United States Department of Energy project. Using this methodology and SamuraiSTFU (Security Testing Framework for Utilities), an open source Linux distribution for pentesting energy sector systems and other critical infrastructure, we’ll perform hands-on penetration testing tasks on embedded electronic field devices, their RF communications, and the myriad of user interfaces used throughout smart grid systems. We’ll tie these techniques and exercises back to the smart grid devices that can be tested using these techniques. We will also do exercises on dissecting and fuzzing smart grid protocols like modbus, DNP3, IEC 61850, ICCP, ZigBee, C37.118, and C12.22. The course exercises will be performed on a mixture of real world and simulated devices to give students the most realistic experience as possible in a portable classroom setting.
Advances in modern ICS systems such as the energy sector’s “Smart Grid” brings great benefits for electric utilities and customer alike, however these benefits come at a cost from a security perspective. With increased functionality and addition inter-system communication, the smart grid brings with it a greater risk of compromise that both utilities and customers must accept to realize their desired business benefits. To minimize this risk, penetration testing in conjunction with other security assessment types must be performed to minimize vulnerabilities before attackers can exploit the critical infrastructures that exist in all countries around the world.
Course Prerequisites
Basic penetration testing experience is desirable, but not required. It is assumed that attendees will have no knowledge of ICS, Smart Grid, SCADA, or critical infrastructure. This course is designed for intermediate level security professionals, be they engineers, technicians, analysts, managers, or penetration testers.
Recommended Reading before the Course
DOWNLOAD:
rapidgator.net/file/e89b0ced53d8b099c6fe7713a6392c34/SCADA_PentestBrucon.part1.rar.html
rapidgator.net/file/be159f45a18170f5434f066684a6197e/SCADA_PentestBrucon.part2.rar.html
rapidgator.net/file/05b2c7726dd411dd6212bfec7a1542a0/SCADA_PentestBrucon.part3.rar.html
rapidgator.net/file/cc688b91c81615592cfadb8871713d22/SCADA_PentestBrucon.part4.rar.html
rapidgator.net/file/818a8e8fd055d5bd8935c9bfe037b4b0/SCADA_PentestBrucon.part5.rar.html
rapidgator.net/file/f49ce566adb1f3a5dc778f518eb60f1d/SCADA_PentestBrucon.part6.rar.html
rapidgator.net/file/0140b964403784a099a0d5a5cb8c51a4/SCADA_PentestBrucon.part7.rar.html
nitroflare.com/view/165A06214E7465B/SCADA_PentestBrucon.part1.rar
nitroflare.com/view/F94FA9095B6591B/SCADA_PentestBrucon.part2.rar
nitroflare.com/view/3EDBDC1F2445283/SCADA_PentestBrucon.part3.rar
nitroflare.com/view/D8957928C458644/SCADA_PentestBrucon.part4.rar
nitroflare.com/view/6EAB5CDE53C19A2/SCADA_PentestBrucon.part5.rar
nitroflare.com/view/F122166A11EA4B7/SCADA_PentestBrucon.part6.rar
nitroflare.com/view/E9ADCC23F1EB63B/SCADA_PentestBrucon.part7.rar