(Lab) In this advanced level module, take a deep dive into the Modbus traffic of a simulated chemical plant to understand how to attack and harden one of the most common ICS protocols in use. After completing this chapter you will be able to
- Run advanced nmap scripts to enumerate Modbus devices
- Use Python Scapy scripts to perform detailed Modbus device enumeration
- Scan and scrape data from a Modbus server
- Send Modbus commands to control a process
- Fuzz Modbus servers to check for vulnerabilities
- Write IDS rules to detect suspicious Modbus activity
- Set up a basic Modbus honeypot to study attacker behavior
Hours: 3.0