A collection of useful resources and tools related to OT (Operation Technology, or Industrial) security.

OT Domain Knowledge

Different Industries

• Manufacture
• Energy

Vendors

SIEMENS

Schneider

RockWell

Honeywell

Communication Protocols

for Manufacture

• PROFINET
• Modbus/TCP
• EtherNet/IP/CIP priepritary protocols
• S7COMM
• OMS+ (or S7COMM+)

for Energy

• IEC 60870-5-104
• DNP3
• IEC 61850

for building industry

• BACnet

for healthcare +

Related Standards

Security Testing

Defense-in-Depth

OT Situation Awareness

Other Resources

• https://github.com/cyber-ranger/GRASSMARLIN Provides situational awareness of Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks in support of network security assessments.
• https://github.com/activecm/rita Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
• https://github.com/ivre/ivre Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
• https://github.com/automayt/ICS-pcap