Pentesting Inductiral Control Systems: OCP-U-HACK

Presented at DEF CON 31 (2023), Aug. 10, 2023, 9 a.m. (240 minutes).

Let’s capture the flag, literally! In this workshop you’ll participate in an engaging CTF during which you’ll take control of a robotic arm to capture a real flag on a model train! To do so, we’ll start with an introduction to Industrial Control Systems to discover the specific components, the network architectures, and even program a PLC simulator. We’ll then discover some ICS-specific protocols, with a focus on OPC-UA, a modern ICS protocol. Finally, you’ll connect to our ICS setup composed of real ICS hardware and software and compete against other attendees to capture the flags with robotic hands! Skill Level: Beginner Prerequisites for students: - No specific knowledge is required Materials or Equipment students will need to bring to participate: - Students should have a laptop capable of running 64-bits virtual machines

Presenters:

  • Arnaud Soullié - Senior Manager at Wavestone
    Arnaud Soullié (@arnaudsoullie) is a Senior Manager at Wavestone, a global consulting company. For 12 years, he has been performing security assessments and pentests on all types of targets. He started specializing in ICS cybersecurity 10 years ago. He spoke and taught workshops at numerous security conferences on ICS topics : BlackHat Europe, BruCon, CS3STHLM, BSides Las Vegas, DEFCON... He is also the creator of the DYODE project, an open­source data diode aimed at ICS. He has been teaching ICS cybersecurity training since 2015.
  • Alexandrine Torrents - Cybersecurity Expert at Wavestone
    Alexandrine Torrents is a cybersecurity expert at Wavestone. She started as a penetration tester, and performed several cybersecurity assessments on ICS. She worked on a few ICS models to demonstrate attacks on PLCs and developed a particular tool to request Siemens PLCs. Then, she started working at securing ICS, especially in the scope of the French military law, helping companies offering a vital service to the nation to comply with security rules. Now, Alexandrine works with different industrial CISOs on their cybersecurity projects: defining secure architectures, hardening systems, implementing detection mechanisms. She is also IEC 62443 certified and still performs assessments on multiple environments.

Similar Presentations: