A proof of concept implementation of the Siemens S7 protocol analyser for the Bro IDS.
☆16Mar 26, 2017Updated 8 years ago
Alternatives and similar repositories for bro-step7-plugin
Users that are interested in bro-step7-plugin are comparing it to the libraries listed below
Sorting:
- Wireshark dissector for wirelessHART☆13Aug 2, 2017Updated 8 years ago
- Some ICS Vulnerabilities I've found will be listed here.☆13Nov 18, 2016Updated 9 years ago
- Zeek OPCUA Binary Parser - CISA ICSNPP☆21Mar 3, 2026Updated 2 weeks ago
- ☆38Jun 23, 2023Updated 2 years ago
- Presentation Slides and Resources☆16Jun 12, 2024Updated last year
- Tools to interact with Siemens PLCs☆13Aug 23, 2023Updated 2 years ago
- Zeek network security monitor plugin that enables parsing of the S7 protocol☆41May 30, 2024Updated last year
- IOCs for CRASHOVERRIDE malware framework☆27Jun 15, 2017Updated 8 years ago
- Modbus tap/tun tunneler, for making arbitrary ethernet connections over Modbus/TCP.☆12Dec 17, 2012Updated 13 years ago
- A collection of scripts & tools for reverse-engineering & hacking SCADA/ICS devices.☆110Mar 14, 2018Updated 8 years ago
- Discover and enumerate all PLC devices and applications via a snap☆13May 28, 2018Updated 7 years ago
- Zeek Ethercat Parser - CISA ICSNPP☆18Mar 3, 2026Updated 2 weeks ago
- A set of ICS IDS rules for use with Suricata.☆52Oct 13, 2023Updated 2 years ago
- PoC C&C for the Industroyer malware☆26Jun 30, 2017Updated 8 years ago
- Zeek S7comm, S7comm-plus, and COTP Parser - CISA ICSNPP☆29Mar 3, 2026Updated 2 weeks ago
- ☆17Mar 8, 2024Updated 2 years ago
- The purpose of this repository is to provide a collaboration space for working on Petya/NoPetya tools specific to ICS☆18Jun 30, 2017Updated 8 years ago
- Masters of IT project, network attacks against Profinet SCADA systems.☆32Sep 15, 2016Updated 9 years ago
- Malmod☆14Jan 19, 2020Updated 6 years ago
- Zeek network security monitor plugin that enables parsing of the Profinet protocol☆31May 30, 2024Updated last year
- A BACnet layer for Scapy☆13Nov 25, 2015Updated 10 years ago
- A list of ICS scanners. It is an aggregation of multiple sources (honeypot, shodan, greynoise...).☆17Oct 24, 2020Updated 5 years ago
- Material from ICS Village talk at DEFCON 25☆13Jul 30, 2018Updated 7 years ago
- IEC104 Client for Metasploit☆11Aug 6, 2018Updated 7 years ago
- Exploit funcionales para pruebas de seguridad en entornos industriales☆11Jul 8, 2020Updated 5 years ago
- Snort rules☆35Nov 20, 2018Updated 7 years ago
- SCADA network attack datasets and process logs☆20May 2, 2017Updated 8 years ago
- Zeek network security monitor plugin that enables parsing of the BACnet standard building controls protocol☆30Apr 23, 2025Updated 10 months ago
- CANBus protection used to isolate third party systems requiring OBDII access.☆19Mar 18, 2015Updated 11 years ago
- Moxa Nport devices enumerate script☆16Apr 9, 2016Updated 9 years ago
- Traffic captures between STEP7/WinCC and S7-300/S7-400 PLCs☆73Jun 10, 2016Updated 9 years ago
- Modbus VCR☆28Oct 6, 2017Updated 8 years ago
- ☆13Oct 27, 2020Updated 5 years ago
- Selective Non-Invasive Active Monitoring for ICS Intrusion Detection: A Siemens S7 IDS☆26Dec 7, 2023Updated 2 years ago
- Zeek Ethernet/IP and CIP Parser - CISA ICSNPP☆26Mar 3, 2026Updated 2 weeks ago
- APOLOGEE is a Python script and Metasploit module that enumerates a hidden directory on Siemens APOGEE PXC BACnet Automation Controllers …☆50May 22, 2025Updated 9 months ago
- Cloud security documents and tools to assist with conducting risk assessments that conform to the ICS62443 guidelines☆11Apr 24, 2023Updated 2 years ago
- Query.AI plugin for Kibana☆13Nov 10, 2019Updated 6 years ago
- security machine learning☆72May 15, 2017Updated 8 years ago