Microsoft ICSpector (ICS Forensics Tools framework) is an open-source forensics framework that enables the analysis of Industrial PLC metadata and project files.
☆366Sep 11, 2025Updated 6 months ago
Alternatives and similar repositories for ics-forensics-tools
Users that are interested in ics-forensics-tools are comparing it to the libraries listed below
Sorting:
- ICS security resources☆132May 7, 2025Updated 10 months ago
- Version 2 of the Graphical Realism Framework for Industrial Control Simulation (GRFICS)☆598Oct 29, 2025Updated 4 months ago
- A Low-cost ICS Security Testbed for Education and Research☆119Mar 16, 2024Updated 2 years ago
- OT security monitoring #nsacyber☆615Jan 7, 2024Updated 2 years ago
- Lists of products useful for ICS security☆108Jun 24, 2024Updated last year
- The primary objective of this project is to develop a cross-platform Python library capable of simulating the core fundamental functional…☆59Mar 4, 2026Updated 2 weeks ago
- ☆75Apr 3, 2025Updated 11 months ago
- A curated list of resources that I recommend when asked about how to learn about Industrial Control Systems Cyber Security.☆198May 10, 2023Updated 2 years ago
- This is the ICSSIM source code and user manual for simulating industrial control system testbed for cybersecurity experiments☆93Jun 19, 2024Updated last year
- Industrial Control Systems Network Protocol Parsers☆191Mar 10, 2026Updated last week
- MITRE Caldera™ for OT Plugins & Capabilities☆241Dec 22, 2025Updated 3 months ago
- The ICS Advisory Project is an open-source project to provide CISA ICS Advisories data in Comma Separated Value (CSV) format to support v…☆92Updated this week
- A curated list of resources related to Industrial Control System (ICS) security.☆1,937Oct 10, 2025Updated 5 months ago
- OT Security Lab for ICS networks☆684Mar 2, 2026Updated 2 weeks ago
- Industrial Security Scripts☆146Mar 1, 2026Updated 3 weeks ago
- ☆13Oct 27, 2020Updated 5 years ago
- Tools, tips, tricks, and more for exploring ICS Security.☆1,930Apr 15, 2025Updated 11 months ago
- A packet capture visualizer for industrial control networks.☆55Dec 4, 2023Updated 2 years ago
- Zeek network security monitor plugin that enables parsing of the S7 protocol☆41May 30, 2024Updated last year
- Graphical Realism Framework for Industrial Control Simulations☆226Jun 20, 2024Updated last year
- Presentation Slides and Resources☆16Jun 12, 2024Updated last year
- ICS/OT related Wireshark profiles + adding some other (IT or OT related) Open Source Wireshark Profiles☆18Mar 21, 2025Updated last year
- ☆75Oct 2, 2025Updated 5 months ago
- Zeek OPCUA Binary Parser - CISA ICSNPP☆21Mar 3, 2026Updated 2 weeks ago
- Documentation and guidance to practice secure coding for various PLC vendors☆42Oct 27, 2023Updated 2 years ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆130Apr 6, 2024Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,362Feb 19, 2026Updated last month
- Beer-ISAC Community Resources☆26Jan 22, 2021Updated 5 years ago
- BusPwn V1.0 is a powerful Modbus hacking framework designed for testing and exploiting vulnerabilities in Modbus-based systems commonly f…☆27Apr 19, 2025Updated 11 months ago
- We want to build a city simulator OT(Operational Technology) system with two railways and create two kinds of HMI software (Engineer moni…☆83May 26, 2023Updated 2 years ago
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,206Dec 29, 2025Updated 2 months ago
- Collection of writeups on ICS/SCADA security.☆196Oct 19, 2025Updated 5 months ago
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆454Feb 18, 2026Updated last month
- We want to create a Python PLC honeypot which support multiple primary OT communication protocols such as Modbus-TCP and Siemens-S7Comm. …☆58Apr 30, 2025Updated 10 months ago
- A collection of reports and case studies to understand the threat landscape for UK critical infrastructure☆39Jan 23, 2024Updated 2 years ago
- ☆17Mar 8, 2024Updated 2 years ago
- A risk rating calculation methodology that uses the OWASP Risk Rating Methodology as a basis.☆32Sep 4, 2024Updated last year
- Operational Technology Cyber Attack Database☆51Jul 22, 2022Updated 3 years ago
- A list of RMMs designed to be used in automation to build alerts☆117Nov 9, 2025Updated 4 months ago