CrySyS / bro-step7-plugin
A proof of concept implementation of the Siemens S7 protocol analyser for the Bro IDS.
☆16Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for bro-step7-plugin
- Tools to interact with Siemens PLCs☆11Updated last year
- Miscellaneous scripts for analyzing protocols and systems☆13Updated 8 years ago
- Exploit funcionales para pruebas de seguridad en entornos industriales☆11Updated 4 years ago
- Challenges from past S4 (SCADA Security Scientific Symposium) Capture-the-Flag contests.☆27Updated 8 years ago
- PoC C&C for the Industroyer malware☆22Updated 7 years ago
- Simple packet dissector that detects anomalous DNP3 traffic by analysing its parameters☆15Updated 8 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- IEC104 Client for Metasploit☆11Updated 6 years ago
- Presentation Slides and Resources☆15Updated 5 months ago
- Set of data collected during a series of man-in-the-middle (MITM) attacks run against the Kenexis Portable Industrial Control System (ICS…☆27Updated 9 years ago
- ICS/SCADA/PLC Discovery Tools Releases☆38Updated 9 years ago
- Material from ICS Village talk at DEFCON 25☆10Updated 6 years ago
- IOCs for CRASHOVERRIDE malware framework☆25Updated 7 years ago
- ☆28Updated 7 years ago
- A set of ICS IDS rules for use with Suricata.☆47Updated last year
- PowerShell script for hardening GE digital CIMPLICITY servers☆22Updated 3 years ago
- Modbus stager in assembly and some scripts to upload/download data to the holding register of a PLC☆42Updated 4 years ago
- Industrial Control Systems Network Scanner☆23Updated 9 years ago
- Industrial Security Checklist☆10Updated 8 years ago
- ☆15Updated 7 months ago
- NMAP NSE script for detecting devices that speak the Crimson v3 protocol☆12Updated 10 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- ☆15Updated 6 years ago
- Generate bulk YARA rules from YAML input☆22Updated 4 years ago
- A dsniff project using bro☆10Updated 8 years ago
- Pcaps for PeddleCheap and implant communication + script for interpreting and decrypting pcaps.☆15Updated 6 years ago
- Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.☆8Updated 5 years ago
- IoC's, PCRE's, YARA's etc☆20Updated last week
- Modbus VCR☆26Updated 7 years ago