PLC for Home Automation and How It Is as Hackable as a Honeypot

Presented at BSidesLV 2016, Aug. 3, 2016, 3 p.m. (30 minutes)

The talk is about how to make PLCs work of your home automation and work as an ICS honeypot at the same time. Current ICS honeypots are mostly based on CONPOT. It works very well, but is simulated and the readings of values don't usually change. As an intruder, it is easy to tell a CONPOT from a real working PLC. In this talk, I'd like to use home-made PLC and cheap industrial-level PLCs that you can buy from eBay and make them part of home automation. The system can pretend itself to be a factory with turbines, conveyor belts and boilers or any other realistic yet fun scenarios. Once it's hacked, you don't only see the results in the database, but optionally in the real world as well.

Presenters:

• Philippe Lin - Senior threat researcher - Trend Micro
  Philippe Lin works in data analysis, machine learning, fast prototyping and threat research. He was a BIOS engineer in Open Computing Project. Active in open source communities, he is a hobbyist of Raspberry Pi / Arduino projects and the author of Moedict-Amis, an open source dictionary of an Austronesian language.

Links:

• https://bsideslv2016.sched.com/event/7ZXo/plc-for-home-automation-and-how-it-is-as-hackable-as-a-honeypot

Similar Presentations:

• Black Hat Asia 2016 / PLC-Blaster: A Worm Living Solely in the PLC
• DEF CON 30 (2022) / The Evil PLC Attack: Weaponizing PLCs
• Black Hat USA 2016 / PLC-Blaster: A Worm Living Solely in the PLC