ICS Village

beginner
hands-on

ALL ( Automotive, ICS, IoT ) Village

ALL village refers to Automotive Ics IoT, comes under one village which gives the opportunity to attendees to play with CAR (CAR Hacking village), ICS and IoT. Attendees will have opportunity deal with real word practical session, understand the methodologies to conduct Hardware Testing, Automotive Testing, IoT Testing and ICS Testing.

Village will cover all those Hands On session within 3 days.

Topics will be covered

  • Briefing of ICS
  • Difference between ICS and DCS
  • Briefing of ISA99/IEC62443, NIST 800-82
  • Briefing of PLC and RTU
  • ICS architecture
  • PLC wiring
  • PLC programming
  • ICS Protocols Overview Modbus
  • Modules
    1. Introduction and protocol Overview
    2. Reconnaissance (Active and Passive)
    3. Sniffing and Eavesdropping
    4. Baseline Response Replay
    5. Modbus Flooding
    6. Modifying Coil and register values of PLC
    7. Rogue Interloper (PLC)
  • S7 Communication
    1. Introduction and protocol Overview
    2. Reconnaissance (Active and Passive)
    3. Sniffing and Eavesdropping
    4. Uploading and downloading PLC programmes
    5. Start and Stop plc CPU
  • AST protocol
    1. Introduction and protocol Overview
    2. Reconnaissance (Active and Passive)
    3. Retrieve data from controller
    4. Modifying data over controller
  • Gateway – 2g/3g/4g
    1. Introduction
    2. IMSI catcher
    3. 3g/4g down grading attack
    4. Jamming attacks
    5. Intercepting communication over fake BTS
    6. SMS fuzzing
    7. SMS forging attack

About Trainer :

Arun Mane is a Founder and Director of Amynasec Labs LLP which is specialized in Vehicle/Iot/ICS and he also Hardware, IOT and ICS Security Researcher. His areas of interest are Hardware Security, SCADA, Automotive security, Fault Injection, RF protocols and Firmware Reverse Engineering. He also has experience in performing Security Audits for both Government and private clients. He has presented a talk at the nullcon 2016,2017,2018 Goa, GNUnify 2017, Defcamp 2017, 2018 Romania, BsidesDelhi 2017, c0c0n x 2017, EFY 2018, x33fcon2018, BlackHat USA 2018, Defcon USA 2018, OWASP Seasides 2019 Goa. Also Trainer for Practical Industrial Control Systems (ICS) hacking training, delivered in x33fcon2018, HIP 2018 and also delivered training for IoT hacking in HITB 2017, HIP 2017, BlackHat Asia 2018 and private clients in London, Australia, Sweden, Netherlands etc. He is an active member of null open community.