From the dumpster fire that is Cyberjanitorial crawls out:
Spectre and Phaktor to present ID/IOT
Industrial Devices and IoT together make an interesting challenge you should explore.
Come learn the basics and security concerns with industrial technologies such as PLC’s, HMI’s, and other technologies. Experience the standard ICS protocols along with ways to interface and interact with them in “malicious” ways. Dig into the scary part of the “Internet of Things”.
Everything you need to know…
What we will teach:
If you’re interested in learning about control systems and how they work, as well as discussing the security implications of these systems, then our community is the perfect place for you. We welcome anyone who wants to explore the protocols and discuss the nuances of a complex system attack.
Have you heard about the fragility of control systems and the cyber security problems they face? Whether the threats are from vulnerable PLCs to protocols that lack authentication, or proprietary protocols where there is little to no documentation, these systems are becoming more and more notorious for their security vulnerabilities.
Perhaps you’ve heard people talking about how bad OT/ICS is, or the age-old “modbus security sucks” comment, but you’ve never really understood what it all means. Or maybe you’re an engineer who has built process systems but you’re unsure about how security considerations impact your control system.
Our community offers discussions and interactions in control system hacking, including activities such as protocol manipulation with Modbus and DNP3. Our goal is to help you gain a deeper understanding of how these systems work and learn how to care for critical infrastructure assets.
So gather up your python skills with PyDNP3, Snap7, pylogix, bacpypes, bac0, and even some pymodbus and lets see what all you can do! Or if you feel particularly adventurous, grab an HMI software of your choice and see what you may be able to do with it as well…
Additionally, we also will discuss the interfaces of ICS and IoT hacking, where you’ll learn how to assess vulnerabilities within devices. We will discuss the impact of and how to perform activities such as dumping device firmware and interfacing with device debugging capabilities. We focus on firmware access via SPI and I2C protocols, giving you the skills you need to hack into a wide range of devices. We will also focus on the threats to many of these devices and why disassembling the devices powering the world around is both a fun and worthwhile activity.
Anyone interested in control systems, how they work, and their security implications is encouraged to stop by and chat. Join us at our community and start your journey towards becoming a true hacking expert pariah enthusiast in control systems and IoT. Together, we’ll all be able to unlock new opportunities and make a real impact on the world around us, or at least have a lot of fun and hack on some things most people rarely get to play with.
What should I bring?
Participants will not need to bring any physical equipment to learn, we will have a limited number of workstations available to share.
For the best experience you may want to bring the following equipment when visiting the ID/IOT Community:
- Laptop with python installed
- Ethernet adapter
The following python packages should be installed:
Hours of Operation
Expo Closed Monday
10:30a – 5:00p
10:30a – 5:00p
9:00a – 5:00p
9:00a – 11:00a
What you Learn
- How to connect to ICS systems
- Understand ICS control protocols and tools
- Building a better understanding of IoT challenges
- How to manage IoT better
Details are still being worked out, but to collect our MiniBadge, come visit our booth for more details on how get this cool MiniBadge.