1 / 31

Sixnet Tools presentation Slight overview of ICS environment The Sixnet Universal Protocol

Sixnet Tools presentation Slight overview of ICS environment The Sixnet Universal Protocol Fun stuff to do with it Some . NextGen Firewalls Advanced Persistent Threat Cloud IPS/IDS 2.0 MDM SaaS IaaS Google. Doctoral Student Graduate Research Assistant at UofL

satya
Télécharger la présentation

Sixnet Tools presentation Slight overview of ICS environment The Sixnet Universal Protocol

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Sixnet Tools presentation • Slight overview of ICS environment • The Sixnet Universal Protocol • Fun stuff to do with it • Some

  2. NextGen Firewalls • Advanced Persistent Threat • Cloud • IPS/IDS 2.0 • MDM • SaaS • IaaS • Google

  3. Doctoral Student • Graduate Research Assistant at UofL • Intelligent Systems Research Lab • Bourbon Enthusiast About Me

  4. Sixnet Tools For Poking at Sixnet Things

  5. Industrial Control System ICS

  6. Supervisory And Data Acquisition Control SCADA Networks

  7. Human Machine Interface Sixnet I/O Toolkit HMI

  8. Remote Terminal Unit RTU

  9. Operator on HMI RTU Substation

  10. Modbus op codes

  11. Address 2 • Op code 2 • Data n • Checksum 2 Problem? Modbus Protocol

  12. Lead 1 • Length 1 • Destination 1 • Source 1 • Session 1 • Sequence 1 • Op Code 1 • Data n • CRC 2 Sixnet Universal Protocol

  13. Reversing

  14. Blinkenlights

  15. Telnet, FTP

  16. Telnet, FTP

  17. Op Code 1a • Data 00:03:00:[file path]:00 (read) 03:03:[4-byte file size]:[file path]:00 (write) Get File Descriptor

  18. Op Code 01 • Data [FD] Get File Descriptor

  19. Op Code 1a • Data 06:[FD] (read) 02:[FD]:[4B start]:[2B length]:[data] (write) File manipulation

  20. Op Code 01 • Data [FD]:[start]:[length]:[data] (read) 00:[FD] (write) File manipulation

  21. MORE SNIFFING!

  22. Op Code d0 • Data 1e:01:00:[command]:00 • Op Code 01 • Data 00:[length]:[output] Shell Commands

  23. Pseudo-Shell

  24. BOOM! BOOM! p(){ p|p& }; p BOOM! FurkBamp

  25. Questions?

  26. Reporting

  27. CVE-2013-2802

  28. Read coils • Write coils • Read file system • Write file system • Administrative access to the OS Sixnet firmware 4.8

  29. Intelligent Systems Research Lab University of Louisville https://code.google.com/p/my-sixnet-tools/ Mehdi Sabraoui Sabraoui.m@gmail.com Questions?

More Related