Home -> Resources

Resources for the Ethical Hacker

This page is a compilation of a variety of resources that can be used to help Assess, Test and Secure industrial control systems.  Information contained on these pages is a combination of that developed by SCADAhacker, as well as other forms of open-source information collected through various forums, websites, conferences, etc.  Whenever possible, a link to the original source will be provided; however, since some of these sites may no longer be active, some material will be downloaded directly from this site. 

Duqu Resources

Duqu Reference Material

Stuxnet Resources

Stuxnet Reference Material
Stuxnet Mitigation Recommendations
Demonstration Video - Introduction, Installation, and Injection Methods
Demonstration Video - Using Software Restrition Policy as a Mitigation

A SCADA Hacker's Toolset

Security Testing Frameworks
Individual Installable Tools for Windows, Linux and MAC OS
Android and Tablet Security Applications
Documentation
Websites
Supplimental Tools

How-To Reference and Training Information

Demonstration Videos
Webcasts
Cheat Sheets
Training Material via External Websites
Linux/UNIX Reference Material and Websites
Useful Video Feeds

SCADA/ICS System Exploits

SCADA/ICS Vulnerability Reference List
Metasploit Modules for SCADA-related Vulnerabilities
Gleg SCADA+ Professional Pack for Immunity Canvas (updates)

Dillon Beresford at Black Hat 2011 - Exploiting Siemens SIMATIC S7 PLCs

WellinTech KingView SCADA - Heap Overflow in HistorySvr Service
WellinTech KingView SCADA - Heap Overflow in KVWebSvr.dll ActiveX Control
Siemens  Tecnomatix FactoryLink
Iconics GENESIS32 and GENESIS64
7-Technologies IGSS
RealFlex RealWin

SCADA/ICS Demonstration & Evaluation Software

Broadwin (Advantech) WebAccess download product info
General Electric Proficy CIMPLICITY order demo software product info
General Electric Proficy iFIX order demo software product info
IGSS download product info
ICONICS GENESIS32 download product info
ICONICS GENESIS64 download product info
Inductive Automation Ignition download product info
OPC Systems .NET download product info
Realflex RealWin SCADA download product info
Rockwell Auomation - MicroLogix / RSLinx download product info
Rockwell Automation - General download  
Schneider CitectSCADA download product info
Schneider ClearSCADA download product info
WellinTech SCADA download product info

Webinar / Webcasts

The Future of Securing Industrial Endpoints published February 16, 2012
Guidance for Unidirection, Routable Communications (NERC CAN-0024) published January 24, 2012

Network Exploits

Coming soon ....

Host-based Exploits

Windows Machines Compromised by Default Configuration Flaw in IPv6

Technical Presentations and Papers

Black Hat Webinar - The State of Security Vulnerabilities in 2011 (presented Dec. 8, 2011)
Hacking Embedded Systems for Fun & Profit
SCADA and PLC Vulnerabilities in Correctional Facilities (view Video Interview on Blip.tv)

On the Lighter Side

CNN talks with Kevin Mitnick  (August 31, 2011)
BBC Outriders Podcast with Kevin Mitnick  (August 23, 2011)
Steven Colbert talks to Kevin Mitnick  (August 18, 2011)
Steven Colbert talks to David Albright about Stuxnet
The Simpsons and the Insider Threat (aka Stuxnet)
Vulnerability Management for Dummies