Library of Resources for
Industrial Control System Cyber Security

= Updated Content Q2-2020 (link and page error corrections)
= New Content Q2-2020
= New Content Q3-2020
Revision History


Workforce Development

Cyber Security Degrees, Jobs and Resources html   
National Initiative for Cybersecurity Careers and Studies (NICE) CISA html   
     
    TOP


ICS Vulnerabilities

Year in Review ( 2017 | 2016 | 2015 | 2014 | 2013 | 2012 | 2011 | 2010 ) DHS NCCIC pdf   
Annual Vulnerability Coordination Report (2016 | 2015) DHS NCCIC pdf   
Industrial Control Systems Assessments (2016 | 2015 | 2014) DHS NCCIC pdf   
Incident Response Summary Report - 2009-2011 ICS-CERT pdf
Distinguishing Internet-facing ICS Devices using PLC Programming Information AFIT pdf    R3
2015 Cyber Security Report Control Engr pdf    R6
Rockwell Automation MicroLogix Remote Code Execution CyberX pdf   
Common Control System Vulnerabilities (2005) DHS pdf
Common Cybersecurity Vulnerabilities Observed in ICS (2009) DHS pdf
Common Cybersecurity Vulnerabilities in ICS (2011) DHS pdf
Risks to Critical Infrastruture that use Cloud Services DHS OCIA pdf   
Common Cybersecurity Vulnerabilities Observed in Control Systems (2008) DoE pdf
Leveraging Ethernet Card Vulnerabilities in Field Devices DigitalBond pdf    R1
ICCP: Threats to Data Security and Potential Solutions  EPRI pdf    R4 
Hacking Embedded Devices   pdf    R1
Cyber Incidents Involving Control Systems INL pdf    R5
Safety vs Security (2006) INL pdf
Vulnerability Analysis of Energy Delivery Control Systems  INL pdf    R4  
Project SHINE Findings Report - Oct. 2014 Infracritical pdf    R3
Commonalities in Vehicle Vulnerabilities IOActive pdf   
SCADA Safety in Numbers Positive Tech pdf    R5
Caution: Malware Ahead - An analysis of emerging risks in automotive system security Wind River pdf    R1
Lessons Learned - Risk Posed by Firewall Firmware Vulnerabilities NERC pdf   
Top 10 Vulnerabilities of Control Systems and their Mitigations (2007) NERC pdf
Hacking the Industrial Network Phx Contact pdf   
SCADA & PLC Vulnerabilities in Correctional Facilities   pdf    R1
PLC Blaster - A Worm Living Solely in the PLC Spenneberg pdf   
Top 10 Most Dangerous ICS Software Weaknesses ToolsWatch pdf    R6
Hacker Machine Interface - State of SCADA HMI Vulnerabilities Trend Micro pdf   
     
    TOP


Standards

ISA Standards Directory    html  R4
ISO Standards Directory    html  R4
IEEE Standards Directory (1686-2013 | C37.240-2014)   html  R5 
Cryptographic Protection of SCADA Communications - 12 Part1 AGA pdf
API-1164 - Pipeline SCADA Security, 2nd ed API pdf    R6
AS 7770:2018 - Rail Cyber Security Au RISSB pdf   
BSI-100-1 - Information Security Management Systems BSI pdf    R2
BSI-100-2 - IT-Grundschutz Methodology BSI pdf    R2
BSI-100-3 - Risk Analysis Based on IT-Grundschutz BSI pdf    R2
BSI-100-4 - Business Continuity Management BSI pdf    R2
Mapping Between the Requirements of ISO/27001:2005 and 27001:2013 BSI pdf    R2
CNSSI-1253R2 - Security Categorization and Control Selection for National Security Systems CNSS pdf    R6
CNSSI-1253 - Security Control Overlays for Industrial Control Systems CNSS pdf    R6
Comparison of Oil and Gas Segment Cyber Security Standards DHS pdf
Chemical Facility Anti-Terrorism Standards (CFATS)   html
CFATS - Risk-based Performance Standard Guidance DHS pdf
Comparison of SCADA Security Standards IEEE pdf
A Comparison of Cross-Sector Cyber Security Standards INL pdf
ISA 62443 Series Overview ISA pdf    R6
Comparing ISO/27001:2005 to ISO/27001:2013 itGovernance pdf    R2
NEI 08-09 - Cyber Security Plan for Nuclear Power Reactors (v6 | v5) NEI pdf    R6
NERC - Complete Set of Reliability Standards (as of 2020-06-20) NERC pdf   
NERC - CIP U.S. Enforcement Dates NERC html 
NERC - CIP U.S. Enforcement Status (as of 2020-06-20) NERC xslx 
NERC - CIP v2 NERC pdf
NERC - CIP v3 NERC pdf
NERC - CIP v4 NERC pdf
NERC - CIP v5 (consolidated - enforcement date: April 1, 2016) NERC pdf    R6
NERC - CIP v5 Transition Guidance (Aug 2014) NERC pdf    R6
NERC - CIP v5 Implementation Study Report - Transition Program NERC pdf    R6
NERC - CIP v5 Transition Program - Lessons Learned NERC pdf   
NERC - CIP v6 (updates only - enforcement date: July 1, 2016) NERC pdf    R6
NERC - Glossary of Terms NERC pdf    R2
SP800-18 - Guide for Developing Security Plans for Information Systems NIST pdf
SP800-30 (Rev 1) - Risk Management Guide for IT Systems NIST pdf    R1
SP800-30 (Rev 0) - Risk Management Guide for IT Systems NIST pdf
SP800-37 (Rev 1) - Guide for Applying the Risk Management Framework NIST pdf   
SP800-39 - Managing Information Security Risk NIST pdf    R1
SP800-40 - Creating a Patch and Vulnerability Management Program NIST pdf
SP800-41 - Guidelines on Firewalls and Firewall Policies NIST pdf
SP800-42D - Guideline on Network Security Testing NIST pdf
SP800-48R1 - Guide to Securing Legacy 802.11 Wireless Networks NIST pdf
SP800-50 - Building an Information Technology Security Awareness and Training Program NIST pdf
SP800-53 (Rev 4) - Document Summary NIST pdf    R1
SP800-53 (Rev 4) - Security and Privacy Controls for Federal Information Systems and Organizations NIST pdf    R1
SP800-53 (Rev 4) - Security and Privacy Controls for Federal Information Systems and Organizations NIST docx
SP800-53 Controls Catalog NIST xml    R2
SP800-53 - R3 to R4 Appendix Table D-2 Markup NIST pdf
SP800-53 - R3 to R4 Appendix F Markup NIST pdf
SP800-53 - R3 to R4 Appendix G Markup NIST pdf
SP800-53 (Rev 3) - (deprecated) Recommended Security Controls for Information Systems (incl ICS) NIST pdf
SP800-53A - Guide for Assessing Security Controls in Information Systems NIST pdf
SP800-53A (Rev 4) - Guide for Assessing Security Controls in Information Systems DRAFT NIST pdf    R2
SP800-61 - Computer Security Incident Handling Guide NIST pdf
SP800-82 (Rev 2) - Guide to Industrial Control Systems Security  NIST pdf    R6
SP800-82 (Rev 1) - Guide to Industrial Control Systems Security  NIST  pdf 
SP800-82 - (deprecated) Guide to Industrial Control Systems Security NIST pdf
SP800-84 - Guide to Test Training and Exercise Programs NIST pdf   
SP800-94 - Guide to Intrusion Detection and Prevention Systems NIST pdf
SP800-97 - Establishing Wireless Robust Security Networks NIST pdf
SP800-115 - Technical Guide to Information Security Testing and Assessment NIST pdf
SP800-120 - Recommendation for EAP Methods Used in Wireless Network Access Authentication NIST pdf
SP800-127 - Guide to Securing WiMAX Wireless Communications NIST pdf
SP800-137 - Information System Continuous Monitoring NIST pdf   
SP800-150 - Guide to Cyber Threat Info Sharing DRAFT NIST pdf   
SP800-167 - Guide to Application Whitelisting NIST pdf    R6
SP800-171 (Rev 1) Protecting Controlled Unclassified Information
(standard | change excerpt)
NIST pdf   
SP800-171 (Rev 0) Protecting Controlled Unclassified Information NIST pdf   
SP800-181 - NICE Cybersecurity Workforce Framework NIST pdf   
SP1800-2a DRAFT - Identity and Access Mgmt for Electric Utilities NIST zip    R6
SP1800-5 - IT Asset Management NIST pdf   
NISTR-8219 - Securing Manufacturing ICS: Behavioral Anomaly Detection NIST pdf   
Framework to Reduce Cyber Risks to Critical Infrastructure v1.0 USA pdf    R1
NIST - System Protection Profile Industrial Control Systems NIST pdf
Regulatory Guide 5.71 - Cyber Security Programs for Nuclear Facilities NRC pdf    R2
National (Qatar) ICS Security Standard QCERT pdf
Process Control Domain Security Requirements for Vendors WIB pdf
     
MAPPINGS BETWEEN STANDARDS    
Mapping between CIS Controls v7.1 and NIST CSF CIS xlsx 
Mapping between NIST 800-53 and ISO/IEC 27001 NIST pdf
Mapping between DHS Catalog of Control Systems Security and Various Standards DHS pdf
Mapping between NISTIR-7628 (Smart Grid) and SP800-53, DHS, and NERC-CIP-2 NIST pdf
NERC CIP v3-5 Standard Mapping to the Critical Security Controls (Draft) SANS pdf    R6
     
    TOP

ACHILLES COMMUNICATIONS CERTIFICATION    
Achilles Certification Level 1 Requirements - Embedded Device Wurldtech pdf    R1
Achilles Certification Level 1 Requirements - Gateway (Network Device) Wurldtech pdf    R1
Achilles Certification Level 1 Requirements - Host Based Device Wurldtech pdf    R1
Achilles Certification Level 2 Requirements - Embedded Device Wurldtech pdf    R1
Achilles Certified Products   html  
     
ISA SECURITY COMPLIANCE INSTITUTE
EMBEDDED DEVICE SECURITY ASSURANCE (EDSA)
ASCI Policies and Procedures ASCI pdf    R1
EDSA Certification Scheme Description    
EDSA-100 - ISASecure Certification Scheme ASCI pdf    R1
EDSA-102 - Errata for EDSA Specifications ASCI pdf    R1
Lab Accreditation Requirements & Tool Recognition Requirements    
EDSA-200 - EDSA Chartered Laboratory Operations and Accreditation ASCI pdf    R1
EDSA-201 - Recognition Process for CRT Tools ASCI pdf    R1
EDSA-202 - Chartered Lab Application and Contract ASCI pdf    R1
EDSA-204 - Use of Symbol and Certificates ASCI pdf    R1
ASCI Chartered Test Lab 2009 Approval Process ASCI pdf    R2
ISASecure Transition to ISO/IEC 17065 ASCI pdf    R2
Initial Certification & Maintenance of Certification Policies & Criteria    
EDSA-300 - ISASecure Certification Requirements ASCI pdf    R1
EDSA-301 - Maintenance of ISASecure Certification ASCI pdf    R1
Certification Requirements Specifications    
EDSA-310 - Common Robustness Test Specification ASCI pdf    R1
EDSA-311 - Functional Security Assessment ASCI pdf    R1
EDSA-312 - Common Reqts for Comm Robustness Testing of IP-based Protocol Implementations ASCI pdf    R1
CRT Test Requirements for Protocols in EDSA Certification    
EDSA-401 - Common Ethernet Protocol Robustness ASCI pdf    R1
EDSA-402 - ARP Protocol over IPv4 Robustness ASCI pdf    R1
EDSA-403 - IPv4 Network Protocol Robustness ASCI pdf    R1
EDSA-404 - ICMPv4 Network Protocol Robustness ASCI pdf    R1
EDSA-405 - UDP Transport Protocol over IPv4 or IPv6 Robustness ASCI pdf    R1
EDSA-406 - TCP Transport Protocol over IPv4 or IPv6 Robustness ASCI pdf    R1
     
ISASecure Embedded Device Security Assurance Certification - March-2010 ASCI pdf    R1
EDSA Certified Components    
ISASecure Certified Components List ICSI html 
     
ISA SECURITY COMPLIANCE INSTITUTE
SYSTEM SECURITY ASSURANCE (SSA)
SSA Certification Scheme Description    
SSA-100 - ISASecure Certification Scheme ASCI pdf    R2
SDLA Certification Specification    
SDLA-100 - ISASecure Certification Scheme ASCI pdf    R2
SSA Lab Acreditation Requirements    
SSA-200 - Chartered Lab Operations and Accreditation ASCI pdf    R2
SSA-204 - Use of Symbols and Certificates ASCI pdf    R2
ASCI Chartered Test Lab 2009 Approval Process ASCI pdf    R2
ISASecure Transition to ISO/IEC 17065 ASCI pdf    R2
Initial Certification & Maintenance of Certification Policies & Criteria    
SSA-300 - ISASecure Certification Requirements ASCI pdf    R2
SSA-301 - Maintainence of ISASecure Certification ASCI pdf    R2
SSA Certification Requirements    
SSA-310 - Requirements for System Robustnest Testing (SRT) ASCI pdf    R2
SSA-311 - Functional Security Assessment for Systems (FSA-S) ASCI pdf    R2
SSA-312 - Security Development Artifacts for Systems (SDA-S) ASCI pdf    R2
SDLA-312 - Security Development Lifecycle Assessment (SDLA) ASCI pdf    R2
SSA-420 - Vulnerability Identification Test (VIT) Policy Specification ASCI pdf    R2
SSA Certified Systems    
ISASecure Certified Systems List ISCI html 
     
ISA SECURITY COMPLIANCE INSTITUTE
SECURITY DEVELOPMENT LIFECYCLE ASSURANCE (SDLA)
SDLA Certification Specification    
SLDA-100 - ISASecure Certification Scheme ASCI pdf    R2
Accreditation Documents    
SDLA-200 - Chartered Lab Operations and Accreditation ASCI pdf    R2
SDLA-204 - Use of Symbols and Certificates ASCI pdf    R2
Technical Specifications    
SDLA-300 - ISASecure Certification Requriements ASCI pdf    R2
SDLA-312 - Security Development Lifecycle Assessment ASCI pdf    R2
SDLC Certified Development Organizations    
ISASecure SDLA Certified Supplier Development Organizations ISCI pdf   
     
    TOP


Best Practices

40 Essential Measures for a Healthy Network ANSSI pdf    R4 
Cybersecurity for ICS - Classification Method and Key Measures ANSSI pdf    R4  
Cybersecurity for ICS - Detailed Measures ANSSI pdf    R4  
Cybersecurity Considerations for Public Transit APTA pdf   
Enterprise Cybersecurity Involving Board and Executive Suite APTA pdf   
Enterprise Cybersecurity Training and Awareness APTA pdf   
Securing Control & Comm Systems in Transit Environments -
Part 1 - Elements, Organization and Risk Assessment/Management
APTA pdf   
Securing Control & Comm Systems in Rail Transit Environments -
Part 2 - Defining Security Zone Architecdture and Protecting Critical Zones
APTA pdf   
Securing Control & Comm Systems in Rail Transit Environments -
Part 3a - Attack Modeling Security Analysis White Paper
APTA pdf   
Securing Control & Comm Systems in Rail Transit Environments -
Part 3b - Protecting the Operationally Critical Security Zone
APTA pdf   
Securing Control & Comm Systems in Transit Bus and Infrastructure APTA pdf   
Application Whitelisting Explained Au DSD pdf    R6
Assessing Security Vulnerabilities and Patches Au DSD pdf    R6
Email Filtering and Mitigating Circumention Techniques Au DSD pdf    R6
Restricting Adminstrative Privileges Explained Au DSD pdf    R6
Australian Government Information Security Manual ( pdf | docx) Au ASD         
Strategies to Mitigate Cyber Security Incidents 2017 (Summary | Details) Au ASD pdf   
Strategies to Mitigate Targeted Cyber Intrusions (2014 | 2012) Au DSD pdf    R6
Strategies to Mitigate Targeted Cyber Intrusions - Mandatory Requirements (2013) Au DSD pdf    R6
Strategies to Mitigate Targeted Cyber Intrusions - Mitigation Details (2014) Au DSD pdf    R6
Top 4 Strategies to Mitigate Targeted Cyber Intrusions to ICT Systems (2012) Au DSD pdf    R1
Top 4 Strategies to Mitigate Cyber Intrusions to Linux Systems ( 2016 | 2013) Au ACSC pdf   
Top 35 Strategies to Mitigate Targeted Cyber Intrusions (2012) Au DSD pdf    R1
Malicious Email Mitigation Strategie (2016) Au ASD pdf   
Cybersecurity Risk and Responsibility in the Water Sector AWWA pdf   
Process Control System Security Guidance for the Water Sector AWWA pdf   
Guidelines on Cyber Security Onboard Ships BIMCO pdf   
Cybersecurity Reference Model CIDX pdf    R1
Guidance for Addressing Cybersecurity in the Chemical Sector CIDX pdf    R1
Configuring and Managing Remote Access for Industrial Control Systems CPNI pdf    R2
Good Practice Guide - Process Control and SCADA Security CPNI pdf    R2
Good Practice Guide - Implement Secure Architecture CPNI pdf    R2
Good Practice Guide - Establish Response Capabilities CPNI pdf    R2
Good Practice Guide - Improve Awareness and Skills CPNI pdf    R2
Good Practice Guide - Engage Projects CPNI pdf    R2
Good Practice Guide - Establish Ongoing Governance CPNI pdf    R2
Good Practice Guide - Security for ICS Framework Overview CPNI pdf   
Threat Intelligence - Collecting, Analysing, Evaluating CPNI pdf    R6
Configuring and Managing Remote Access for Industrial Control Systems CPNI pdf    R2
7 Steps to Effectively Defend Industrial Control Systems DHS pdf    R6
Improved Robustness of Time and Frequency Sources in Fixed Locations  DHS pdf    R4  
Catalog of Control Systems Security DHS pdf
Cyber Security Framework and Technical Metrics DHS pdf
Cyber Security Procurement Language for ICS DHS pdf
Cyber Security Procurement Language for Energy Delivery Systems  DHS pdf    R4 
Defense in Depth Strategies DHS pdf
Recommended Practice for Patch Management DHS pdf
Remote Access for ICS DHS pdf
Securing SCADA and Industrial Control Systems DHS pdf
A Guide to Critical Infrastructure Security and Resilience DHS pdf   
Defense in Depth Strategies for Industrial Control Systems DHS pdf   
Guidelines for Application Whitelisting in Industrial Control Systems DHS pdf   
Recommended Practice - Updating Antivirus in Industrial Control Systems DHS pdf   
WMI for Detection and Response DHS pdf   
Pipeline Security Guidelines DHS TSA pdf   
Steps to Improve Cyber Security of SCADA Networks DoE pdf
Certification of Cyber Security Skills of ICS/SCADA Professionals  ENISA pdf    R4 
Cyber Security and Resilience of Intelligent Public Transport ENISA pdf   
Good Practice Guide for CERTs in the Area of Industrial Control Systems ENISA pdf    R1
Good Practices for an EU ICS Testing Coordination Capability ENISA pdf    R1
Methodologies for Identification of Critical Information Infrastructure Assets Services ENISA pdf    R5
Methodology for the Identification of Critical Communication Networks Links and Components ( Report | Annexes ) ENISA pdf   
Protecting Industrial Control Systems - Annex I - Desktop Research Results ENISA pdf    R5
Protecting Industrial Control Systems - Annex II - Survey and Interview Analysis ENISA pdf    R5
Protecting Industrial Control Systems - Annex III - ICS Security Related Standards, Guidelines and Policy Documents ENISA pdf    R5
Protecting Industrial Control Systems - Annex IV - ICS Security Related Initiatives ENISA pdf    R5
Protecting Industrial Control Systems - Annex V - Key Findings ENISA pdf    R5
Protecting Industrial Control Systems - Annex VI - Minutes of the Workshop ENISA pdf    R5
Smart Grid Security - ENISA Recommendations ENISA pdf    R5
Smart Gride Security Certification in Europe ENISA pdf    R5
Window of Exposure - A Real Program for SCADA - Recommendations for Europe on SCADA Patching ENISA pdf    R5
Guidelines for Minimum Cybersecurity Requirements for Drilling Assets IADC pdf   
Using Operational Security to Support Cyber Security Culture INL pdf
Design and Operational Guide to Protect against "Advanced Persistent Threats" IPA-JP pdf    R5
Facility Security Plan Guide ISC pdf   
Resilience for Grid Security Emergencies JHU-APL pdf   
Securing WLANs using 802.11i LLNL pdf
Implementing the Top 4 Mitigation Strategies - A Guide for Project Managers Microsoft pdf    R6
Implementing the Top 35 Mitigation Strategies on Windows Platform Microsoft pdf    R1
Documents/Best_Practices/Microsoft - Password Guidance.pdf Microsoft pdf   
Cyber Resiliency Engineering Framework MITRE pdf   
Cyber Resilience Metrics - Key Observations MITRE pdf   
Guide to Increased Security in Industrial Information and Control Systems MSB pdf    R5
Good Practice Guide on Firewall Deployment for Control Systems NISCC pdf
Secure Remote Access Reference NIST pdf
NISTIR-7628 - Guidelines for Smart Grid Cyber Security (consolidated) Rev. 1 NIST pdf    R3
Cisco Security Switch Configuration Guide NSA pdf
Top 10 Information Assurance Mitigation Strategies   NSA-IAD  pdf    R4   
Anti-Exploitation  NSA-IAD  pdf    R4  
Antivirus File Reputation Services  NSA-IAD  pdf    R4   
Application Whitelisting  NSA-IAD  pdf    R4   
Control Administrative Privileges  NSA-IAD  pdf    R4   
Defending Against Destructive Malware  NSA-IAD  pdf    R4   
Host Intrusion Preventation Systems  NSA-IAD  pdf    R4   
Limited Workstation-to-Workstation Communications  NSA-IAD  pdf    R4   
Secure Baseline Configuration  NSA-IAD  pdf    R4   
Segregate Networks and Functions  NSA-IAD pdf    R4  
Software Improvements  NSA-IAD  pdf    R4   
Web DNS Reputation  NSA-IAD  pdf    R4   
Mapping of NERC-CIP Ver 3-5 to 20 Critical Security Controls CoCS pdf    R2
Mapping of NERC-CIP Ver 3-5 to 20 Critical Security Controls CoCS xls     R2
Top 20 Critical Security Controls - Ver 5.1 CoCS pdf    R6
Top 20 Critical Security Controls - Ver 5.0 CoCS pdf    R2
Top 20 Critical Security Controls - Ver 4.0 poster CoCS pdf    R2
Top 20 Critical Security Controls - Ver 4.0 - 11-2012 SANS pdf    R1
Top 20 Critical Security Controls - Ver 3.1 - 11-2011 SANS pdf
Top 20 Critical Security Controls - Ver 3.1 poster SANS pdf
Top 20 Critical Security Controls - Ver 3.1 - 08-2011 SANS pdf    R1
Top 20 Critical Security Controls - Ver 2.3 - 11-2009 SANS pdf    R1
A Brief History of the 20 Critical Security Controls SANS html  R1
Designing a DMZ SANS pdf
Industrial Control System Security Resources - poster SANS pdf    R2
Code of Practice - Cyber Security for Ships UK DfT pdf   
Rail Cyber Security - Guidance to Industry UK DfT pdf   
10 Steps To Cyber Security UK NCSC pdf   
10 Basic Cybersecurity Measures - Best Practices to Reduce Exploitable Weaknesses and Attacks Water-ISAC pdf    R6
     
    TOP


Frameworks

8510.01 - Risk Management Framework for DoD IT Systems DoD pdf   
503 - IC IT Systems Security Risk Mgmt Certification and Accreditation DoD pdf   
Framework for Vulnerability Disclosure Program for Online Systems DoJ pdf   
Industrial Internet Security Framework (Technical Report) IIC html 
NICE Cybersecurity Workforce Framework NIST pdf   
SP800-37 (Rev 1) - Guide to Applying the Risk Management Framework NIST pdf   
CSF v1.0 to SP800-171r1 Mapping NIST xlsx 
Cybersecurity Framework v1.1 NIST pdf   
Cybersecurity Framework v1.1 (with markup) NIST pdf   
Cybersecurity Framework v1.1 Core NIST xlsx  
Cybersecurity Framework v1.1 10-2019 NIST pptx 
Manufacturing Profile - Cybersecurity Framework - DRAFT NIST pdf   
NISTIR-8183A-1 - CSF Manufacturing Profile - Low Security Level -
Example Implementation Guide - Vol 1 (DRAFT)
NIST pdf   
NISTIR-8183A-1 - CSF Manufacturing Profile - Low Security Level -
Example Implementation Guide - Vol 2 (DRAFT)
NIST pdf   
NISTIR-8183A-1 - CSF Manufacturing Profile - Low Security Level -
Example Implementation Guide - Vol 3 (DRAFT)
NIST pdf   
Insider Threat Program - Maturity Framework NITTF pdf   
OT Cybersecurity Maturity - 5-step Guide to Using the NIST CSF Verve pdf   
     
    TOP


Maturity Models

Cybersecurity Maturity Model Certification (CMMC) v0.7 DoD pdf   
Cybersecurity Capability Maturity Model (C2M2) v1.1 DoE pdf   
Electricity Subsector C2M2 v1.1 DoE pdf   
Oil and Natural Gas Subsector C2M2 v1.1 DoE pdf   
The Community Cyber Security Maturity Model White pdf   
     
    TOP


Table-Top and Live-Fire Exercises

CRR Method Description and Self Assessment User Guide DHS pdf   
CRR NIST Framework Crosswalk DHS pdf   
CRR Self Assessment Package DHS pdf   
Homeland Security Exercise and Evaluation Program DHS pdf   
Homeland Security Exercise and Evaluation Program DHS pdf   
GridEx I (2011) After Action Report NERC pdf   
GridEx II (2013) After Action Report NERC pdf   
GridEx III (2015) After Action Report NERC pdf   
SP800-84 - Guide to Test Training and Exercise Programs NIST pdf   
     
    TOP


White Papers & Articles

Securing Your Control System ABB - ISA pdf    R6
The Rocky Relationship between Safety and Security ABB pdf    R6
Distinguishing  Internet-facing ICS Devices using PLC Programming Information AFIT pdf    R4
Creating Secure Systems through Attack Tree Modeling Amenaza pdf    R6
Network Security Benchmarking Study ARC pdf   
State of Physical Access Control ASIS pdf   
House of ICS Security Belden pdf   
Understanding Deep Packet Inspection for SCADA Security Belden pdf   
Windows XP End of Service: Practical Options for Industrial Applications  Belden pdf    R4 
Windows XP End-of-Life Handbook for Upgrade Latecomers Bit9 pdf    R2
Changing the CFO Mindset on Cybersecurity CFO Mag pdf    R6
Cyber Security at Civil Nuclear Facilities Chatham pdf    R6
Why Integrate Physical and Logical Security Cisco pdf   
Security and Prosperity in the Information Age ( Vol 1 | Vol 2) CNAS pdf    R1
Best Practices for Protecting Your Personal Information from Hackers Cognitio pdf   
Turbocharged DCSs Drive Users to New Production Heights Control pdf   
Six Questions CEOs Should IT Teams about Cybersecurity Crowe pdf    R6
Changing Face of Cybersecurity Crowe pdf    R6
Next Generation Jump Servers for ICS CyberArk pdf   
Priviledged Identity and Session Management for Protecting CI CyberArk pdf   
Addressing the MITRE ATT&CK for ICS Matrix CyberX pdf   
Understanding Distributed-Denial-of-Service (DDoS) Attacks DHS pdf    R1
IT Management Challenges Continue in TSA's Security Technology Integrated Program DHS pdf   
Review of Cyber Security Risk Assessment Methods for SCADA Elsevier pdf   
A New Responsibility for Utility Boards of Directors: Cybersecurity Energy Coll pdf    R6
Energy Company Cybersecurity References Energy Coll pdf    R6
Can We Learn from SCADA Security Incidents ENISA pdf    R5
Case Studies for the Cybersecurity of IACS ERNCIP pdf    R6
R&D and Standardization Road Map ESCoRTS pdf    R6
Cybersecurity Lifecycle Poster - Ver 1.19 - 01-2013 Exida pdf    R1
Securing SCADA Infrastructure Fortinet pdf    R5
Security Best Practices and Risk Assessment of SCADA and ICS Francia pdf   
Cyber Security eGuide r1 GarrettCom pdf
Critical Capabilities for Security Information and Event Management (SIEM) Gartner pdf    R6
Magic Quadrant for Security Information and Event Management (2015 | 2014) Gartner pdf    R6
Securing Operations Technology Ginter pdf   
SCADA Security: What's broken and how to fix it Ginter pdf   
Setting up pfSense as Stateful Bridging Firewall Gray pdf   
Challenges of Multivendor Systems in Implementation of IIot-ready PLCs Honeywell pdf   
Cyber Security Posters Honeywell pdf    R1
PLCs and Cybersecurity Honeywell pdf   
Secure Remote Access to Process Control Systems Honeywell pdf    R1
Cyber Wars by Byres Staggs Hydrocarbon
Engineering
pdf    R1
Know Your Enemies - A Primer on Advanced Persistent Threat Groups ICIT pdf    R6
Implementing Deep Packet Inspection for EtherNet/IP IEB pdf    R4  
SCADA Challenges for Forensic Investigators IEEE pdf    R6
7 Best Practices for Automation System Cyber Security & Compliance Ind Def pdf    R1
SANS 20 and ICS Considerations Ind Def pdf    R1
Six Steps to Control System Cybersecurity InTech pdf    R6
Evaluating Cyber Attacks in Rail Transit Jha pdf   
Architecture for Secure SCADA and Distributed Control System Networks Juniper pdf    R5
Debunking the Top 5 Security Implementation Myths Kaspersky pdf    R6
Effect of NERC CIP Standards on Bulk Electric System Reliability Ladendorff pdf   
Tracking and Tracing Cyber Attacks Lipson pdf   
ICS Virtualization Project - Final Report LOGIIC pdf    R5
Real-Time Data Transfer Project - Final Public Report LOGIIC pdf   
Advanced Targeted Attacks: It Takes a System McAfee pdf    R6
Disrupt Targeted Attacks McAfee pdf    R6
Monitor Continuously. Respond Swiftly. McAfee pdf    R6
Mitigating Pass-the-Hash and other Credential Theft Attacks Microsoft pdf    R1
Importance of Cybersecurity Monitoring for Utilities n-Dimension pdf    R6
Centralized OT Security Management for Your Entire SCADA/ICS Environment NextNine pdf    R6
Identifying SCADA Systems on Networks via Remote Reconnaissance NPS pdf   
Exploit Evasion Defenses Analysis NSS Labs pdf    R1
Exploit Protection Analysis NSS Labs pdf    R1
Convergence in Automation System Protection (Executive Summary) Pikes Res pdf    R1
All Data Diodes Are Not Equal Owl pdf    R6
Defining the 21st Century Cybersecurity Protection Platform for ICS Palo Alto pdf    R6
Convergency in Automation Systems Protection Pikes pdf   
Defending Yesterday (all sectors) PWC pdf   
Securing America's Passenger Rail Systems RAND pdf   
Categorizing Threats - Building and Using a Threat Matrix SNL pdf    R1
Industrial Control System Cyber Kill Chain SANS pdf   
Pass-the-Hash Attacks: Tools and Mitigation SANS pdf    R4   
State of Application Security (2015) SANS pdf   
Five Best Practices to Improve Building Management Systems Cyber Security Schneider pdf   
Framework for Developing and Evaluating Utility Substation Cyber Security Schneider pdf   
Cyber Threats in Physical Security - Understand and Mitigating the Risk Senstar pdf   
Protecting Rail and Metro from Cyber Security Threats SmartRail pdf   
Protecting Control Networks Sourcefire pdf    R1
Building a Security Operations Center with Splunk Splunk pdf   
Eliminating Cybersecurity Blind Spots - Challenges for Business Tenable pdf    R6
SCADA and CIP Security in a Post Stuxnet World Tofino pdf    R1
7 Steps to ICS and SCADA Security Tofino pdf
Solving the ICS Security Patch Problem Tofino pdf   
Understanding Deep Packet Inspection for SCADA Security Tofino pdf    R1
Communicating Cybersecurity to Boards and Executives Tripwire pdf    R6
The Cybersecurity Literacy Confidence Gap Tripwire pdf    R6
Executive Guide to the Top 20 Critical Security Controls Tripwire pdf    R6
Security Reference Architecture - A Practical Guide to Foundation Ctrls Tripwire pdf   
Top 5 CIP Audit Fails from 2013 Tripwire pdf   
When Cyber Attacks Get Physical Tripwire pdf   
Stepping Up the Battle Against Advanced Threats Trusteer pdf    R5
Common Cyber Attacks - Recuing the Impact UK NCSC pdf   
What You Can Do to Combat Cyber Attacks UK NCSC pdf   
Quantitatively Assessing and Visualising Industrial System Attack Surfaces Univ of Cam pdf    R4
6 Emerging Rail Cybersecurity Standards Waterfall pdf   
Black Box Flight Recorder for ICS Forensics Waterfall pdf   
Cybersecurity for Rail Signaling Systems and Rolling Stock Waterfall pdf   
Top 20 Cyber Attacks on ICS Waterfall pdf   
An Executive Guide to Cyber Security for Operational Technology Wurldtech pdf   
Cybersecurity in Operational Technology Wurldtech pdf   
Network Segmentation for Industrial Control Systems Wurldtech pdf   
     
    TOP


Assessment Guidance

Security Vulnerability Assessments API pdf
Cyber Security Assessments of Industrial Control Systems (Good Practice Guide) CPNI pdf    R2
Cyber Security Assessments of Industrial Control Systems (Viewpoint) CPNI pdf    R2
Cyber Security Assessments of Industrial Control Systems DHS pdf
Cyber Assessments Methods for SCADA ISA pdf
Guideline on Network Security Testing NIST pdf
Framework for Assessing and Improving Security Posture of ICS NSA pdf
Blending Security Checks Tenable pdf    R6
Open Source Security Testing Methodology Manual v3.0   pdf
     
    TOP


Assessment Tools

Cyber Security Evaluation Tool (CSET) html  R7
DHS CISA GitHub Project - Cyber Security Evaluation Tool html  
Cyber Security Evaluation Tool (CSET) - Version 10.0.1 exe   
Cyber Security Evaluation Tool (CSET) - Version 10.0.0 exe   
Cyber Security Evaluation Tool (CSET) - Version 9.2.3 exe   
Cyber Security Evaluation Tool (CSET) - Version 9.2.2 exe   
Cyber Security Evaluation Tool (CSET) - Version 9.2.1 exe   
Cyber Security Evaluation Tool (CSET) - Version 9.2.0 exe   
Cyber Security Evaluation Tool (CSET) - Version 9.0.1 exe   
Cyber Security Evaluation Tool (CSET) - Version 8.1 iso    R7
Cyber Security Evaluation Tool (CSET) - Version 8.0 iso    R7
Cyber Security Evaluation Tool (CSET) - Version 7.1 iso   
Cyber Security Evaluation Tool (CSET) - Version 7.0 iso    R6
Cyber Security Evaluation Tool (CSET) - Version 6.2 iso    R4
Cyber Security Evaluation Tool (CSET) - Version 6.1 iso    R4
Cyber Security Evaluation Tool (CSET) - Fact Sheet pdf
CSET Sample Project (CSET v4) orxml
CSET Sample Project (CSET v6) cset  R1
CSET Sample Output - Detailed Report pdf
CSET Sample Output - Executive Summary pdf
CSET Sample Output - Security Plan Report pdf
CSET Sample Output - Site Summary Report pdf
Nessus SCADA Plugins html
Nessus and NERC CIP Compliance html  R1
Digital Bond Research on GitHub (deprecated) html  
Tenable - Control System Security - Project Bandolier (deprecated) html  
Auditing SCADA and Control System Networks (Tenable) html
Compliance Auditing with Microsoft PowerShell (Tenable) html  
Tenable (Nessus) Blog - SCADA Posts html  
Offensive Security - Penetration Test Report - Sample 1 docx 
Offensive Security - Penetration Test Report - Sample 2 pdf    
   
  TOP


ICS Cyber Event Reference

STUXNET    
Stuxnet Under the Microscope v1.31 | v1.1 ESET pdf
Stuxnet Worm and Options for Remediation Ind Def pdf
To Kill a Centriduge - Technical Analysis of What Stuxnet’s Creators Tried to Achieve Langner pdf    R4  
Stuxnet 0.5 - The Missing Link v1.0 Symantec pdf    R1
Stuxnet Dossier v1.4 | v1.3 Symantec pdf
Analysis of Siemens Stuxnet Malware Attacks Tofino pdf
How Stuxnet Spreads v1.0 Byres
Ginter
Langill
pdf
     
DUQU    
Duqu 2 - Technical Details v2.1 Kaspersky pdf    R6
Duqu 2 - Frequently Asked Questions Kaspersky pdf    R6
Duqu 2 - Indicators of Compromise (IoC) Kaspersky pdf    R6
Duqu 2 - Yara Rules Kaspersky pdf    R6
W32.Duqu Threat Analysis McAfee pdf
W32.Duqu v1.3 | v1.2 | v1.0 Symantec pdf
     
DRAGONFLY / HAVEX    
Defending Against the Dragonfly Cyber Security Attacks Belden
Langill
pdf    R5
Havex Hunts for ICS/SCADA Systems F-Secure pdf    R2
Energetic Bear - Crouching Yeti (Report | Appendices) Kaspersky pdf    R2
Full Disclosure of Havex Trojans  NETRESEC pdf    R4   
Observing the Havex RAT  NETRESEC  pdf    R4   
SCADA Network Forensics - Analyzing Havex NETRESEC  pdf    R4   
Cyberespionage Campaign Hits Energy Companies Sec Matters
Langill
pdf    
Dragonfly: Cyberespionage Attacks Against Energy Suppliers v1.2 | v1.0 Symantec pdf    R2
Targeted Attacks Against the Energy Sector Symantec pdf    R2
     
Miscellaneous    
sKyWIper (Flame/Flamer) - A Complex Malware for Targeted Attacks CrySys pdf    R1
Operation Cleaver Report Cylance pdf    
ICS-CERT Incident Response Summary (2009-2011) DHS pdf
Targeted Cyber Intrusion Detection and Mitigation Strategies (ICS-TIP-12-146-01A) DHS pdf    R1
HatMan - Safety System Targeted Malware DHS pdf    
Analysis of the Cyber Attack on the Ukrainian Power Grid E-ISAC pdf    
GreyEnergy - A Sucessor to Black Energy ESET pdf    
Fireeye APT30 Report - Mechanics of a Long-Running Cyber Espionage Operation Fireeye pdf    R5
Hacking the Street? FIN4 Likely Playing the Market Fireeye  pdf    R4 
Irongate ICS Malware Fireeye pdf    
Mandiant APT28 Report - A Window into Russias Cyber Espionage Ops Mandiant pdf    R4  
Mandiant APT1 Report - Exposing One of China's Cyber Espionage Units Mandiant pdf    R1
Mandiant APT1 Report Appendices Mandiant zip    R1
Night Dragon - Global Energy Cyberattacks McAfee pdf
Operation Shady RAT McAfee pdf    
TRITON - The First SIS Cyberattack Nozomi pdf    
Global Bank Network Breach NYT pdf    
Exploitation on SAP Business Apps - Threat Report Onapsis pdf    
Operation "Oil Tanker" - The Phantom Menace Panda pdf    R6
The Black Vine Cyberespionage Group Symantec pdf    R6
Regin: Top-tier Espionage Tool Enables Stealthy Surveillance  Symantec pdf    R4   
The Downadup Codex v2.0 Symantec pdf    R1
The Elderwood Project Symantec pdf    R1
The Nitro Attacks Symantec pdf    
OpenSSL - How Does It Affect You Tenable pdf    R2
Cyberattack Impacts MTSA Facility Operations USCG pdf    
     
    TOP


Vulnerability Disclosure

Framework for Vulnerability Disclosure Program for Online Systems DoJ pdf   
Governments Role in Vulnerability Disclosure Harvard pdf   
     
    TOP


Threat Intelligence

Cyber Threat Report 2015 ACSC pdf     R6
Definitive Guide to Sharing Threat Intelligence Anomali pdf   
Iran Country Profile Relating to Security Anomali pdf   
Cyber Threat Predictions (2018) BAE pdf   
IT Security Situation in Germany (2014 (DE) | 2011 | 2009) BSI pdf     R6
Threat Catalogue for Elementary Threats BSI pdf     R2
Cyber Crime and Security Report 2013 (pdf | doc) CERTAu           R2
Cyber Crime and Security Report 2012 (pdf | doc) CERTAu           R2
Year in Review (2018 | 2017) CIS pdf   
Cisco Annual Cybersecurity Report
( 2018 | 2017 | 2016 | 2016 | 2015 | 2014 | 2013 | 2011 | 2010)
Cisco pdf   
Cisco Threats of the Year (2019) Cisco pdf   
Global Threat Report CrowdStrike pdf     R2
Computer Crime and Security Survey (2010 | 2009) CSI pdf     R2
Cyberthreat Defense Report
(2020 | 2019 | 2018 | 2017 | 2016 | 2015 | 2014)
CyberEdge pdf   
Global IoT-ICS Risk Report (2020) CyberX pdf   
Annual Threat Report (2017) Cypher pdf   
Sector Resilience Report: Electric Power Delivery - June 2014 DHS pdf     R2
Malware Trends 2016 DHS pdf    
Freight Rail Threat Assessment DHS pdf    
Threat Landscape 2015 ENISA pdf     R6
Advanced Threat Report - 2012 (1H | 2H) FireEye pdf     R1
Definitive Guide to Next-Generation Threat Protection FireEye pdf     R1
ICS Vulnerability Trend Report (2016) FireEye pdf    
Industrial Control System Vulnerability Trend Report (2016) FireEye pdf    
The Evolving Threat Landscape in 2016 Fortinet pdf     R6
ICS2 Global Information Security Workforce Study (2013) Frost-Sullivan pdf     R1
Attack Landscape (2019-1H) F-Secure pdf    
Cyber Risk Report (2016) HPE pdf    
Threat Intelligence Index (2017) IBM pdf    
Internet Crime Report (2015 | 2014 | 2013 | 2012 | 2011 | 2010) IC3 pdf    
BYOD and Mobile Security 2014 InfoSec pdf     R2
Executive Perspectives on Cyber Threat Intelligence iSight pdf     R6
State of Industrial Cybersecurity (2018) Kaspersky pdf    
Threat Intelligence Report for the Telecommunications Industry (2016) Kaspersky pdf    
Threat Predictions (2018) Kaspersky pdf    
Cybersecurity in the Oil and Gas Industry  LMCO pdf     R4 
Cybercrime Exposed: Cybercrime as a Service McAfee pdf     R1
McAfee Global Threat Intelligence McAfee pdf     R1
Hacking the Human OS McAfee pdf     R5
Reputation - The Foundation of Effective Threat Protection McAfee pdf     R1
State of Security (March 2012) McAfee pdf     R1
Threat Predictions (2019 | 2018 | 2017 | 2016 | 2015 | 2014 | 2013 | 2012) McAfee pdf     R6
Threat Report 2018 (Q1 | Q2) McAfee pdf    
Threat Report 2017 (Q1 | Q2 | Q3 | Q4) McAfee pdf    
Threat Report 2016 (Q1 | Q2 | Q3 | Q4) McAfee pdf    
Threat Report 2015 (Q1 | Q2 | Q3) McAfee pdf     R6
Threat Report 2014 (Q1 | Q2 | Q3 | Q4) McAfee pdf     R5
Threat Report 2013 (Q1 | Q2 | Q3 | Q4) McAfee pdf     R1
Threat Report 2012 (Q1 | Q2 | Q3 | Q4) McAfee pdf     R1
Security Intelligence Report
 (2018 | 2017 2Q 1Q | 2016 1H | 2015 2H 1H | 2014 2H 1H | 2013 2H 1H |
  2012 2H 1H | 2011 2H 1H | 2010 2H 1H | 2009 2H 1H | 2008 2H)
Microsoft pdf    
Security Intelligence Report 2015 (Key Findings 1H) | WW Threat Assess) Microsoft pdf     R6
Security Intelligence Report 2014 (1H | 2H) Microsoft pdf     R6
Security Intelligence Report 2013 (1H | 2H) Microsoft pdf     R1
Security Intelligence Report 2012 (1H | 2H) Microsoft pdf     R1
Security Intelligence Report 2011 (2H) Microsoft pdf     R6
Nationwide Cyber Security Review (2018 | 2017 | 2016) MS-ISAC pdf    
Global Threat Intelligence Report (2016 | 2014) NTT pdf    
Application Usage and Threat Report 2015 - Unit 42 Palo Alto pdf     R6
Value of Threat Intelligence (2017) Ponemon pdf    
ICS Security in Review (2017) Positive Tech pdf    
Vulnerability Review 2015 Secunia pdf     R5
State of Security in Control Systems Today (Survey Results) - 2015 SANS pdf     R6
Intelligence Report (Feb. 2013) Symantec pdf     R1
Internet Security Threat Report
(2016 | 2015 App | 2014 App | 2013 App | 2012 Trends App | 2011 2010)
Symantec pdf    
Report on Cybersecurity and Critical Infrastructure in the Americas Trend Micro pdf     R5
Spear-Phishing - Email: Most Favored APT Attack Bait (2012) Trend Micro pdf     R1
Cybersecurity Trend Report (2016) UBM pdf    
Attacker Behavior Report (2018) Vectra pdf    
Hidden Threat of Cyberattachs in the Energy and Utilities Industry (2018) Vectra pdf    
Data Breach Investigations Report
(2020 | 2019 | 2018 | 2017 | 2016 | 2015 | 2014 | 2013 | 2012)
Verizon pdf    
Data Breach Digest (2016) Verion pdf    
     
    TOP


Open-Source Intelligence

Bugtraq (seclists.org) html  R1
Vulners Computer Security Vulns html 
Exploit-DB html  R1
National Vulnerability Database (NIST) html  R1
Rapid 7 (Metasploit) Vulnerabilities & Exploit Modules html  R1
Security Focus (by Symantec) html  R1
   
  TOP


ICS Vendor Security Reference

Industrial Information System Security ABB pdf    R3
Integrated Safety - How a simplier system can increase effectiveness ABB pdf   
Is your current safety system compliant to today's safety standard ABB pdf   
Securing Your Control System ABB pdf   
Intrinsic Cyber Security Fundamentals Bedrock pdf   
Cyber Secure Industrial Automation - Secure Control & Communication Bedrock pdf   
A Guide to Securing Your Process Emerson pdf    R6
Best Practices for DeltaV Cyber Security Emerson pdf   
DeltaV Controller Firewall - Product Data Sheet Emerson pdf   
DeltaV Smart Firewall - Product Data Sheet Emerson pdf   
DeltaV Smart Switches - Product Data Sheet Emerson pdf   
DeltaV System Cyber Security (2013) Emerson pdf   
Essentials of Cyber Security Honeywell pdf    R6
Integrating Control and Safety with Secure System Segregation Honeywell pdf    R6
Securing Industrial Control Systems: A Guide for Properly Securing ICS Operating in a Microsoft Windows Environment Wonderware
(Schneider)
pdf    R1
Achieving Secure, Remote Access to Plant-Floor Applications and Data Rockwell
Cisco
pdf    R1
Control System Security Updates Rockwell pdf    R1
Securing Manufacturing Computing and Controller Assets Rockwell
Cisco
pdf    R1
Security Concept for PCS7 and WinCC Siemens pdf    R1
NERC CIP Security Solution Suite  Tripwire pdf    R4 
Wibu Systems - Software Integrity Protection Wibu pdf    R6
     
SUPPLIER SECURITY WEBSITES / PORTALS / CERTS    
Cyber Security Alerts and Notifications ABB html  R1
Cyber Security Updates Honeywell html 
Security Advisory Index (login required) Rockwell html  R1
Cybersecurity Support Portal Schneider html  R1
ProductCERT Security Advisories Siemens html  R1
     
    TOP


Insider Threats

Common Sense Guide to Prevention and Detection of Insider Threats CERT pdf    R1
Insider Threat Control - Using a SIEM signature to detect potential precursors to IT Sabotage CERT pdf    R1
Insider Threat Control - Using Centralized Logging to Detect Data Exfiltration Near Insider Termination CERT pdf    R1
Insider Misuse of IT Systems CPNI pdf    R2
2010-2011 Computer Crime and Security Survey CSI pdf    R1
Cybersecurity Watch Survey 2011 Deloitte pdf    R1
Combating the Insider Threat  DHS pdf    R4  
Insider Threat Awareness Webinar DHS pdf    R1
National Risk Estimate: Insider Threat Fact Sheet  DHS pdf    R4 
Risks to US Critical Infrastructure from Insider Threat (23 Dec 2013) DHS pdf    R1
Insider Threat Intelligence Report (2018) Dtex pdf   
Insider Threats FBI pdf    R1
Insider Threat Examples by Sector   pdf    R1
Insider Threat to Criticail Infrastructure NIAC pdf    R1
Insider Threat Program - Maturity Framework NITTF pdf   
Cost of Data Breach Study 2011 Ponemon pdf    R1
     
    TOP


Risk Management

An IT Auditor’s Guide to Security Controls and Risk Compliance Bit9 pdf   
Good Practice Guide - Understand the Business Risk CPNI pdf    R2
Good Practice Guide - Manage Third Party Risk CPNI pdf    R2
Five Critical Attributes of Effective Cybersecurity Risk Management Crowe pdf    R6
Cybersecurity Risk Management Processs Guideline DoE pdf   
Reducing Operational Risk in Oil and Gas Industry  EMC pdf    R4 
Bound to Fail: Why Cyber Security Risk Cannot Simply Be "Managed" Away Langner pdf    R2
Cyber Supply Chain Risk Management: Toward a Global Vision of Transparency & Trust Microsoft pdf    R1
SP800-30 (Rev 1) - Risk Management Guide for IT Systems NIST pdf    R1
SP800-39 - Managing Information Security Risk NIST pdf    R1
Cyber-Risk Oversight - Director's Handbook Series Tripwire pdf    R6
State of Risk-Based Security Management Tripwire pdf    R6
     
    TOP


Incident Response

Handbook for Computer Security Incident Response Teams (CSIRT) CMU-SEI pdf    R6
Developing a Cybersecurity Incident Response Capability DHS pdf
Best Practices for Victim Response and Reporting of Cyber Incidents FBI pdf    R6
SP800-61 - Computer Security Incident Handling Guide NIST pdf
     
    TOP


Government

Action Plan for Critical Infrastructure - 2014-2017 Canada pdf   
Directive 2008/114/EC - Identification of European Critical Infrastructures (2008) EU pdf    R2
European Programme for Critical Infrastructure Protection (2006) EU pdf    R2
French National Digital Security Strategy France pdf   
Analysis of Critical Infrastructures (2004) Germany pdf    R2
CIP Implementation Plan of the National Plan for Information Infrastructure Protection (2005) Germany pdf    R2
National ICS Security Standard (2014) Qatar pdf   
Meridan Library of Global Regulatory Standards (hosted by Qatar CERT) Qatar html  R1
Singapore National Cybersecurity Strategy (2016) Singapore pdf   
Strategic Framework and Policy Statement - Improving Resilience of Critical Infrastructure (2010) UK pdf    R2
Report to Presidents Commission on Critical Infrastructure Protection (1997) USA pdf   
Security Categorization and Control Selection for National Security Systems (CNSSI) (2014) USA pdf   
Dept of Energy Cyber Security Program (DoE) (2019) USA pdf   
Framework to Reduce Cyber Risks to Critical Infrastructure v1.0 (2014) USA pdf    R1
Executive Order - Improving Critical Infrastructure Cyber Security (2013) USA pdf    R1
Executive Order - Fact Sheet (2013) USA pdf    R1
PPD-21 - Critical Infrastructure Security and Resilience (2013) USA pdf    R1
PPD-21 - Fact Sheet (2013) USA pdf    R1
Postmarket Management of Cybersecurity in Medical Devices (FDA) (2016) USA pdf    R6
Actions Needed to Address Significant Cybersecurity Risks Facing the Electric Grid (GAO) (2019) USA pdf   
Challenges in Securing Control Systems (GAO) (2003) USA pdf
Cybersecurity for Critical Infrastructure Protection (GAO) (2004) USA pdf    R1
DHS Needs to Enhance Capabilities, Improve Planning, and Support Greater Adoption of Its NCPS (GAO) (2016) USA pdf    R6
CyberSkills Task Force Report (2012) USA pdf    R4 
Liberty and Security in a Changing World (2013) USA pdf   
New York State Homeland Security Strategy (2014-2016) USA pdf   
Addressing Urgent Cyber Threats to Critical Infrastructure (2017) USA` pdf   
Intelligence Information Sharing Report (2012)  USA pdf    R4  
National Infrastructure Protection Plan ( 2009 |  2006) USA pdf
Updates to the National Infrastructure Protection Plan ( Full Report |  Highlights) USA pdf
NIPP - Sector-Specific Plan - Chemical (2010) USA pdf
NIPP - Sector-Specific Plan - Critical Manufacturing (2010) USA pdf
NIPP - Sector-Specific Plan - Energy (2010) USA pdf
NIPP - Sector-Specific Plan - Information Technology (2010) USA pdf
NIPP - Sector-Specific Plan - Transportation Systems (2010) USA pdf
NIPP - Sector-Specific Plan - Water (2010) USA pdf
Federal Government's Track Record on Cybersecurity and Critical Infrastructure (2014) USA pdf    R6
National (Qatar) ICS Security Standard (2014) QCERT pdf
     
    TOP


Roadmaps

Cross Sector Roadmap for Cybersecurity of Control Systems pdf
Roadmap to Achieve Energy Delivery Systems Cybersecurity (current) pdf
Roadmap to Secure Control Systems in the Chemical Sector pdf
Roadmap to Secure Control Systems in the Energy Sector (outdated) pdf
Roadmap to Secure Control Systems in the Transportation Sector pdf
Roadmap to Secure Control Systems in the Water Sector pdf
Securing ICS in the Chemical Sector pdf
Strategy for Securing Control Systems pdf
   
  TOP


Defense & Military

DoDI 8500.01 - Cybersecurity DoD pdf    
Advanced Cyber ICS Tactics, Techniques, and Procedures for DoD ICS CYBERCOM pdf    
Dictionary of Military and Associated Terms DoD pdf    
Handbook for Self-Assessing Security Vulnerabilities & Risks of ICS on DoD Installations DoD pdf    
Program Managers Guide for Integrating Cybersecurity RMF into Acquisition Lifecycle DoD pdf    
UFC-4 010 06 - Cybersecurity of Facility-Related Control Systems DoD pdf    
UFGS-25 05 11 - Division 25 - Integrated Automation - Cybersecurity for Facility-Related Control Systems DoD pdf    
UFGS-25 10 10 - Division 25 - Integrated Automation - Utility Monitoring and Control System Front End and Integration DoD pdf    
ITG 2017-01 - Application of Cybersecurity to Facility-Related Control Systems DoN pdf    
Cybersecurity-Related Policies and Issuances DoD pdf    
NVIC 05-17 - Guidelines for Addressing Cyber Risks at MTSA Facilities USCG pdf    
     
    TOP


Case Studies

Backdoors and Holes in Network Perimeters pdf
Deepwater Horizon Accident Investigation Report (Executive Summary | Full Report) pdf    R1
Maroochy Water Services Australia (NIST) (Report | Presentation) pdf    R6
Olympic Pipeline Bellingham, Washington (NIST) (Report | Presentation) pdf    R6
German Still Works Facility (SANS) pdf    R6
Undirected Attached Against Critical Infrastructure pdf
Air Traffic Control (ATC) Cyber Security Project (CSFI) pdf    R6
ABB SCADA EMS System INEEL Baseline Summary Test Report (INEEL) pdf
Control System Security Assessments including PCS7 Details (INL-Siemens) pdf    R6
Olympic (Bellingham) Pipeline Accident Report (NTSB) pdf    R1
   
  TOP


Security Considerations for OPC

Effective OPC Security for Control Systems Matrikon pdf
Hardening Guidelines for OPC Hosts Byres pdf
OPC Exposed Byres pdf
Understanding OPC Byres pdf
Using OPC via DCOM with Windows XP SP2 OPCF pdf   
Securing Your OPC Classic Control Systems Tofino pdf
Security Implcations of OPC in Control Systems DHS pdf
     
    TOP


ICS Basics

"The Ever-Expanding Mind of Morley = the Father of the PLC" mp4  R6
Automation 101 - An Industry Guide to Control System Engineering (Automation Direct) pdf    R3
Acronyms List pdf    R6
PLC Handbook - Practical Guide to PLCs (Automation Direct) pdf   
SCADA Basics - NCS TIB 04-1 pdf
SCADA Basics - TM 5-601 pdf
PLC Programming Theory pdf
CODESYS Runtime - A PLC Control Framework (Kaspersky) pdf   
Purdue Enterprise Reference Architecture (Purdue Model) pdf   
Essentials of Safety Instrumented Systems (ABB) pdf    R1
Safety Lifecycle Workbook (Emerson) pdf    R4 
Power System and Substation Automation pdf    R3
High-Voltage Substation Configuration Infrastruture System Overview (OCIA) pdf   
Engineers Guide to DP Flow Measurement (Emerson) pdf   
Control Magazine's 2016 Readers Choice Awards pdf    R6
Control Magazine - State of Technology - Controllers & Control Systems (2015) pdf   
Control Magazine - State of Technology - PLCs, PCs, & PACs (2017) pdf   
Top 50 Automation Vendors - North America (Control-ARC) (2015 | 2013) pdf    R6
Top 50 Automation Vendors - Worldwide (Control-ARC) (2015 | 2013) pdf    R6
   
ICS SUPPLIER SYSTEM INFORMATION  
ABB AC800M Controller - Communication Protocols pdf    R3
ABB System 800xA - Reference Architecture pdf    R6
ABB System 800xA - Solutions Handbook pdf    R3
ABB System 800xA - System Guide Summary pdf    R1
   
  TOP


ICS Protocols & Networks

USER ORGANIZATIONS    
EtherCAT Technology Group html  
Fieldbus Foundation html  
Modbus Organization html  
OPC Foundation html  
Open Device Vendors Association (ODVA) html  
PROFIBUS & PROFINET International (PI) html  
     
INDUSTRIAL PROTOCOLS    
System Comparison - The Five Major Technologies IE Facts pdf    R1
Comparison of Protocols Used in Remote Monitoring  IIT pdf    R4 
Introduction to Modbus TCP/IP Acromag pdf    R2
Introduction to Modbus Serial and Modbus TCP Extension pdf    R1
Modbus Application Protocol Specification v1.1b3 Modbus.org pdf    R6
Modbus Messaging on TCP/IP Implementation Guide v1.0b Modbus.org pdf    R6
Open Modbus/TCP Specification    docx R4
DNP3 User & Reference Manual Control pdf    R1
DNP3 Overview Triangle pdf    R1
DNP3 Protocol Primer DNP UG pdf    R1
DNP3 Secure Authentication v5 2011-11-08   pdf    R1
DNP3 Decoder/Parser (online) Automatak html  R5
Introduction to EtherNet/IP Technology   pdf    R6
EtherNet/IP Delta html  R3
Principles of EtherNet/IP Communication Schneider pdf    R6
EtherNet/IP - Using Explicit Messaging Delta pdf    R3
Communicating with Rockwell Automation Products using EtherNet/IP Explicit Messaging Rockwell pdf    R6
Optimize EtherNet/IP Journal pdf    R1
Common Industrial Protocol (CIP) ODVA pdf    R1
CIP Security Phase 1 - Secure Trasnport for EtherNet/IP ODVA pdf   
ControlNet - CIP on CTDMA Technology ODVA pdf    R1
DeviceNet - CIP on CAN ODVA pdf    R1
EtherNet/IP - CIP on Ethernet Technology ODVA pdf    R1
EtherNet/IP - A Guide for Developers ODVA pdf    R3
Network Infrastructure for EtherNet/IP: Introduction and Considerations ODVA pdf    R1
Securing EtherNet/IP Networks ODVA pdf    R1
EtherNet/IP Specification for ACR Series Products Parker pdf    R3
DF1 Protocol and Command Set Reference Manual Rockwell pdf    R4  
Guide to Open Protocols in Building Automation Schneider pdf   
BACnet Primer Phoenix Ctrl pdf    R3
LonTalk Protocol Specification v3.0 Echelon pdf   
Guide to OPC Matrikon pdf    R2
Distributed Component Object Model (DCOM) Technical Overview Microsoft pdf    R6
OPC-DCOM - Five Things You Need to Know OPC TI pdf    R6
OPC Data Access - Custom Interface - Ver 2.05A OPCF pdf    R2
OPC Unified Architecture - Future standard for communication and information modeling in automation ABB pdf    R6
The Evolution of OPC - Classic to Unified Architecture Honeywell pdf    R6
OPC Unfied Architecture - The Interoperabilty Standard OPCF pdf    R3
OPC Unified Architecture - Collaboration with PLCopen OPCF pdf    R3
OPC Unified Architecture - Advantages and Possibilities of Use OPCF pdf    R3
OPC Unified Architecture - Overview and Concepts - Ver 1.02 OPCF pdf    R2
OPC Unified Architecture - Secure Communication with IEC 62541 OPCF pdf    R3
PROFINET Security Guideline PI pdf    R1
PROFINET System Description - Technology and Application PI pdf    R1
Power Industry Communication Protocol Features and Benefits ProSoft pdf    R3
Technical Overview and Benefits of IEC 61850 Standard for Substation Automation SISCO pdf    R3
Top 10 Recommendations for Plantwide EtherNet/IP Deployments Rockwell
Cisco
pdf    R1
PROFIBUS and Modbus: A Comparison Siemens pdf    R1
Comparison of DNP3 and IEC 60870-5-101 Triangle pdf    R3
Comparison of  Modbus and DNP3 Communication Protocols Triangle pdf    R4  
Using DNP3 & IEC 60870-5 Communication Protocols in the Oil & Gas Industry Triangle pdf    R1
Industrial Internet of Things (IIoT) Protocols to Watch Automation pdf   
Industrial Internet of Thinbgs (IIoT) Protcols to Watch Kepware pdf   
     
INDUSTRIAL NETWORKING    
Substation Cellular WAN Solution Reference Architecture  Belden pdf    R4 
Substation Ethernet MPLS Solution Reference Architecture Belden pdf    R4  
Substation Ethernet WAN Solution Reference Architecture Belden pdf    R4  
Substation Communications Design - Legacy to IEC 61850 Belden pdf    R4  
Substation Communications Design - Legacy to IEC 61850 - Best Practices Belden pdf    R4 
Substation Communications Design - Legacy to IEC 61850 - Practical Applications Belden pdf    R4 
Substation Communications Design - Legacy to IEC 61850 - Reliability and Security Belden pdf    R4  
Industrial Networks: Wired & Wireless   pdf    R1
Ethernet Backbones in Safety and Basic Process Control Systems GE-IP pdf    R3
Ethernet Basics Phoenix Cont pdf   
Industrial Ethernet - Quick & Simple Explanation of Key Terms Phoenix Cont pdf   
Industrial Ethernet Phoenix Cont pdf   
Industrial Ethernet - A Control Engineers Guide Cisco pdf    R1
Field Wireless Networks ISA pdf    R1
Converged Plantwide Ethernet (CPwE) Design & Implementation Guide Rockwell
Cisco
pdf    R1
Connected Factory Architecture Reference Architecture  Cisco pdf    R4 
Ethernet Design Considerations for Control System Networks Rockwell pdf    R1
Fundamentals of EtherNet/IP Networking Rockwell pdf    R4 
TCP/UDP Ports Used by Rockwell and Allen-Bradley Products Rockwell pdf    R1
Ethernet to the Factory Design and Implementation Guide v1.2 Rockwell
Cisco
pdf    R1
SNMP Tutorial DPS Teleco pdf    R1
Demystifying the SNMP MIB DPS Teleco pdf    R1
Handbook for Network Security IAONA pdf   
     
    TOP


Reference

Acronyms List DHS pdf   
Dictionary of Military and Associated Terms DoD pdf   
Cyber Security Handbook & Reference Guide (2019) -
The Ultimate List of Cyber Security Vendors
TAG pdf   
     
    TOP


Manuals and User Guides

AlienVault OSSIM Installation Guide pdf
AlienVault OSSIM Snare Windows pdf
AlienVault OSSIM Users Manual v1.0 pdf
Allen-Bradley Stratix Ethernet Switches  pdf    R4 
Allen-Bradley Stratix 5900 Industrial Router pdf    R4 
Certes Networks Layer 4 (Payload) Encryption pdf    R1
Certes Networks TrustNet Group Encryption pdf    R1
Certes Networks CEP-5LC Datasheet pdf    R1
Certes Networks CEP-5LC Brochure pdf    R1
Certes Networks CEP-10 Datasheet pdf
Certes Networks Variable Speed Encryptors Datasheet pdf
Cisco Guide to Hardening IOS Devices pdf    R6
Cisco IOS Switch Security Configuration Guide (NSA) pdf    R2
Cisco SAFE Security Reference Architecture (White Paper) pdf    R1
Cisco SAFE Security Reference Architecture (Poster) pdf    R1
Cisco Network Admission Control pdf    R1
Cisco TrustSec Solution At-a-Glance pdf    R1
Cisco TrustSec Solution Overview pdf    R1
Enterasys Secure Networks for Process Control pdf    R1
Enterasys Network Access Control pdf    R1
eWon Industrial Remote Access Routers pdf    R6
Hardening HP ProCurve Switches pdf    R2
MatrikonOPC Tunneller User Manual pdf    R1
MatrikonOPC Server for Simulation User Manual pdf    R6
Microsoft Introduction to Network Access Protection pdf    R1
Nessus Documentation (Tenable) html
Nessus 6.4 Command Line Reference pdf    R6
Nessus 6.4 Installation and Configuration Guide pdf    R6
Nessus 6.4 SCAP Assessments pdf    R6
Nessus 6.4 User Guide pdf    R6
Nessus Activation Code Installation pdf    R6
Nessus Compliance Checks (r89) pdf    R6
Nessus Credential Checks pdf
Nessus Patch Management Integration pdf
Suricata - Basic Setup pdf    R1
Suricata - Setting up IPS Inline for Linux pdf    R1
Suricata - Suricata.yaml Reference pdf    R1
Suricata - Ubuntu Getting Started with Suricata pdf    R1
Suricata - Ubuntu Installation pdf    R1
Tofino Argon 100 Hardware Installation and Troubleshooting Guide v1.0.0 pdf
Tofino Argon 220 Hardware Installation and Troubleshooting Guide v1.0.0 pdf
Tofino Argon CMP Installation and Upgrade Guide v1.7.0 pdf
Tofino Argon CMP User's Guide v1.7.0 pdf
Tofino Pre-Defined Controllers and Protocols pdf    R5
Tofino Xenon Security Appliance - Datasheet pdf    R5
Tofino Xenon Security Appliance - Product Bulletin pdf    R6
VMware Network Segmentation in Virtualized Environments pdf    R1
VMware DMZ Virtualization using vSphere 4 Cisco Nexus pdf    R1
VMware DMZ Virtualization with Infrastructure 3 (legacy) pdf    R1
VMware vSphere 5.5 Security Hardening Guide xlsx  R1
VMware vSphere 5.1 Security Hardening Guide xlsx  R1
VMware vSphere 5.0 Security Hardening Guide xlsx  R1
VMware vSphere 4.1 Security Hardening Guide (legacy) pdf    R1
VMware vSphere 4.0 Security Hardening Guide (legacy) pdf    R1
VMware Instrastructure 3 Securing Hardening (legacy) pdf    R1
Wurldtech Industrial Next-Generation Firewall Solution Brief pdf    R5
Wurldtech Industrial Next-Generation Firewall Spec Sheet pdf    R6
   
  TOP


Cheat Sheets

Hacking - Certified Ethical Hacker Cheat Sheet Exercises pdf
Hacking - Meterpreter Cheat Sheet pdf
Hacking - Nessus NMAP Commands pdf
Hacking - netcat pdf
Hacking - NMap Mindmap Reference pdf
Hacking - NMap Quick Reference Guide pdf
Hacking - Reconnaissance Reference Sheet pdf
Hacking - Tripwire Common Security Exploit-Vuln Matrix pdf
HTML - Markdown pdf
Intelligence - Cyber Intelligence Gathering pdf   
Intelligence - OSINT Links for Investigators pdf   
Linux - Admin Quick Reference pdf   
Linux - Bourne Shell Quick Reference pdf
Linux - Command Reference 1 pdf   
Linux - Command Reference 2 pdf   
Linux - OpenSUSE - Zypper pdf   
Linux - Quick Reference Card pdf
Linux - RHEL - Common Admin Commands pdf   
Linux - RHEL - Linux Commands pdf   
Linux - RHEL - Yum pdf   
Linux - Scapy pdf     R6
Linux - Security Onion pdf   
Linux - Shell Cheat Sheet pdf
Linux - Shell Script Cheat Sheet pdf
Linux - Solaris - Basic Commands pdf   
Linux - Solaris - Quick Sheet pdf   
Linux - tcpdump pdf
Linux - Ubuntu Quick Reference pdf
Linux - VI Editor Reference pdf
MAC - OSX Key Combo Reference Guide pdf
Networking - Border Gateway Protocol pdf
Networking - Cisco CCENT pdf   
Networking - Cisco CCNA pdf   
Networking - Cisco IOS Interior Routing Protocols pdf     R6
Networking - Cisco IOS IPv4 Access Lists pdf
Networking - Cisco IOS Quick Reference pdf   
Networking - Cisco IOS Versions pdf
Networking - Cisco IOS Zone-Based Firewall pdf     R6
Networking - Common TCP-UDP Ports pdf
Networking - EIGRP (Enhanced Interior Gateway Routing Protocol) pdf
Networking - First Hop (Router) Redundancy pdf
Networking - Frame Mode MPLS pdf
Networking - IEEE 802.11 Pocket Reference Guide pdf   
Networking - IEEE 802.11 WirelessLAN pdf
Networking - IEEE 802.1X Authentication pdf
Networking - IP Tables Processing png    R1
Networking - IP Security (IPsec) pdf
Networking - IPv4 Multicast pdf
Networking - IPv4_Subnetting pdf
Networking - IPv6 pdf
Networking - IS-IS pdf
Networking - Network Address Translation (NAT) pdf
Networking - Open Shortest Path First (OSPF) pdf
Networking - Physical Terminations pdf
Networking - Point-to-Point Protocol (PPP) pdf
Networking - Quality of Service (QoS) pdf
Networking - Routing Information Protocol (RIP) pdf    R6
Networking - Spanning Tree pdf
Networking - tcpdump pdf   
Networking - TCP/IP pdf
Networking - Virtual Local Area Networks (VLAN) pdf
Networking - Voice over IP (VoIP) Basics pdf    R6
Networking - Wireshark - Display Filters 1 pdf
Networking - Wireshark - Display Filters 2 pdf
Programming - Ruby pdf    R1
Programming - x64 Instructions pdf    R2
Programming - x86 Instructions pdf    R2
Programming - x86 Instructions pdf    R2
Source Control - Git pdf    R6
SQL - MySQL Commands pdf
VMware - Ports and Services pdf   
VMware - PowerCLI pdf   
VMware - Reference Card pdf
Web - Google Hacking Advanced Querying pdf   
Web - Google Hacking and Defense pdf   
Windows - Command Line pdf    R1
Windows - Command Reference (book extract)  pdf    R4 
Windows - NTFS pdf   
Windows - PowerShell 1 pdf   
Windows - PowerShell 2 pdf   
Windows - PowerShell 3 pdf   
Windows - PowerShell 4 pdf   
   
  TOP


eBooks

Industrial Cyber Security for Dummies Belden pdf   
Endpoint Threat Detection,  Response and Prevention for Dummies Bit9 pdf    R4 
Next-Generation Intrusion Prevention Systems (IPS) for Dummies Sourcefire pdf    R3
CISO Handbook CISO Coun pdf   
Universal Threat Management (UTM) for Dummies Fortinet pdf    R1
Fundamentals of Azure Microsoft pdf    R6
Introducing Microsoft System Center 2012R2 - Technical Overview Microsoft pdf    R6
Introducing Windows 10 for IT Professionals - Preview Edition Microsoft pdf    R6
Introducing Windows 8.1 for IT Professionals - Technical Overview Microsoft pdf    R6
Introducing Windows Azure for IT Professionals Microsoft pdf    R6
Introducing Windows Server 2012R2 - Technical Overview Microsoft pdf    R6
Windows 10 Support Secrets Microsoft pdf   
Vulnerability Management for Dummies Qualys pdf    R1
Network Monitoring and Troubleshooting for Dummies (2nd ed) Riverbed pdf    R6
Network Monitoring for Dummies (1st ed) Solarwinds pdf   
Essential Guide to Machine Data Splunk pdf   
Security Configuration Management for Dummies Tripwire pdf    R6
     
    TOP


Multimedia

WEB-BASED DEMONSTRATION VIDEOS BY SCADAHACKER  
Exploitation 101: Turning a SCADA Vulnerability into a Successful Attack html  
Protecting Your ICS from Zero-Day Attacks html  
Stuxnet - Introduction, Installation, and Injection Methods html  
Stuxnet - Using Software Restriction Policy as a Mitigation html  
   
WEB-BASED THIRD-PARTY VIDEOS  
Auditing SCADA and Control System Networks (Tenable) html
   
  TOP


Spreadsheets

IP Address Subnet Calculator xls    R1
Network Assistant (subnetting, port lookup, cli commands, acronyms) xls    R1
IP Subnetting Assistant (tools to understand "visibility") xls    R1
   
  TOP


Tools and Applications

MITRE ATT&CK for ICS html  
NIST Quick Guide for 800-53 (Apple IOS) html
NIST Quick Guide for 800-53 (Android) html  
National Vulnerability Database - NIST Special Publication 800-53 Rev. 3 & 4 (http) html  
National Vulnerability Database - CVSS Scoring Tool (v2 | v3) html  
NIST Computer Forensics Tool Catalog html  
   
  TOP


Websites

INDUSTRIAL
American Chemistry Council Chemical Sector Cyber Security Program html
American Gas Association - Natural Gas Security html  
American Water Works Assocation - Cybersecurity and Guidance html  
ASIS International html
Canadian Society for Industrial Security (CSIS) html  
Control Engineering html
Control Global (Control Magazine) html
Digital Bond Archives html  
lectric Power Research Institute (EPRI) html  
Electrical Energy Online html
Emerging Security Standards to the EU Power Network Controls & other Critical Equipment html   R6
InfraGard html
ISA-99, Manufacturing and Control Systems Security html  
ISA Security Compliance Institute (ISASecure) html  R1
SCADA HoneyNet Project (Source Forge) html  
ScadaSafe Project (Source Forge) html
   
CERT AND SECURITY FIRMS
AusCERT - Blog and Publications html  
Forum of Incident Response and Security Teams (FIRST) html
McAfee Labs html  
McAfee Threat Center html  
Symantec Security Center html  
Symantec Security Center - Whitepapers html  
   
MALWARE ANALYSIS
Malwr html  
Virus Total html  
NATIONAL LABORATORIES
Argonne National Laboratory (ANL) - National Security Programs html  
Idaho National Laboratory (INL) - National and Homeland Security html  
Idaho National Laboratory (INL) - Cybercore Integration Center html  
Pacific Northwest National Laboratory (PNNL) National Security html  
Sandia National Laboratory (SNL) - Center for SCADA Security html  
 
INFORMATION SHARING AND ANALYSIS CENTERS
Industrial Control System Information Sharing and Analysis Center html  
Electricity Information Sharing and Analysis Center (E-ISAC) html  
Multi-State Information Sharing and Analysis Center: SCADA and Control Systems Procurement Project (MS-ISAC) html  
Surface Transportation Sector Information Sharing and Analysis Center (ST-ISAC) html
Water Sector Information Sharing and Analysis Center (WS-ISAC) html  
   
GOVERNMENT / REGULATORY
Directory Listing of Worldwide CERT Organizations html  
Centre for the Protection of National Infrastructure (CPNI) html  
Department of Energy (DOE) Control Systems Security html  
Dept of Homeland Security (DHS) Cybersecurity & Infrastructure Security Agency (CISA) html  
DHS-CISA US-CERT Industrial Control Systems html  
DHS - Infrastructure Security - Chemical Security html  
Federal Energy Regulatory Council (FERC) html
National Institute of Standards and Technology (NIST) html
NIST - Computer Security Resource Center - Special Publications (800 Series) html  
NIST - Cyber-Physical Systems html  
NIST - Cyber-Physical Systems Public Working Group html  
North American Electric Reliability Corp (NERC) - Critical Infrastructure Protection (CIP) Standards html   R6
Combating Terrorism Tech Support Office (CTTSO) - Tech Support Working Group html
   
PRODUCTS / VENDORS
AT&T Security (formerly Alien Vault) html  
Certes Networks html
Cisco html  
Dragos html  
Hirschmann html  
Netresec html   R6
OSIsoft html
Phoenix Contact / Innominate html  
SCADAfence html  
Secure Crossing html
Splunk html   R6
Tenable Network Security html
Tofino Security html
Waterfall Security Solutions html  
   
  TOP


News Sources

ISSSource html
Threat Level (Wired) html
Homeland Security Newswire html
   
  TOP


Software

These links will redirect you to various sites on the Internet for downloading of current versions. Some applications may require registration prior to downloading. You should always validate that you are accessing the latest version before downloading.

AT&T AlienVault Open-Source Security Incident Monitor (OSSIM) (14-day trial)
Clonezilla Disk Imaging Utility R1
Cyber Security Evaluation Tool
Firewall Builder for Windows / Mac / Linux
HashCheck Shell Extension for Windows
Hashdeep Utilities for Windows
HashTab Shell Extension for Windows
Kali Linux R1
Libre Office (replaces Open Office) for Windows / Mac / Linux
Metasploit Community Edition for Windows/Linux
Microsoft Baseline Security Advisor for Windows
Microsoft Network Monitor R1
ModbusPal Java-based Modbus/TCP Simulator
Nessus Vulnerability Scanner
Nessus Center for Internet Security (CIS) Benchmark Files
NIST Cyber Security Framework (CSF) Reference Tool
Ophcrack Password Utility LiveCD
Ophcrack Password Rainbow Tables
pfSense Security Appliance R1
Portable Apps for Windows
Putty Telnet/SSH Client
QuickDraw IDS Signatures and PCAP Test Files
Redo Disk Imaging Utility
Rockwell Client Server Protcol (CSP)  Lua add-on for Wireshark (deprecated) R4
Rufus USB Boot Creation Utility for Windows / Mac / Linux
SCADA Honeynet
Security Onion Linux (Xubuntu) Distro R1
Snare Syslog Agentss
SNORT (Intrusion Monitoring System) R1
Solarwinds Network Tools for Windows
Splunk Syslog Server for Windows / Mac / Linux
Suricata (Intrusion Monitoring System)
Triangle MicroWorks Test Harness for Windows R1
UNetBootin USB Boot Creation Utility for Windows / Mac / Linux
VeraCrypt Disk Encryption Utility for Windows/Linux/Mac OS X
VyOS Security Platform (formerly Vyatta)
Windows Password Recovery Tool (Linux)
Windows 10 Subsystem for Linux
Wireshark R1
   
  TOP

Revision History:
R1 = New/Updated Content Q1-2014
R2 = New/Updated Content Q3-2014
R3 = New/Updated Content Q4-2014
R4 = New/Updated Content Q1-2015
R5 = New/Updated Content Q2-2015
R6 = New/Updated Content Q1-2016
R7 = New/Updated Content Q1-2018
(R8) = Updated Content Q2-2020 (link and page error corrections)
(R9) = New Content Q2-2020
(R10) = New Content Q3-2020