The offensive security team here at Digital Bond spends a lot of our time attacking various control system components, from field device to SCADA server to HMI and everything in between.  A big part of these attacks is network analysis.  We examine the protocols being used to control the targeted systems, and in the case [...]

A few days ago a friend of mine shared out an old editorial about lifeboats, parodying the objections to civil defense programs in the early 60s, from the Harvard Crimson. People haven’t changed much. The same type of arguments brought up time and time again when discussing the need for better education into software [...]

We’ve had a lot of posts about fuzzing on the blog lately. We’ve looked at the latest technologies and techniques, we’ve talked about fuzzers, intelligent versus dumb, some of the tradeoffs involved with design choices, and in the future we’re going to talk some more about some of the commercial offerings in the space [...]

Fuzzing is growing up.  From the academics of the late 80s throwing random data at unix command line tools, to the early work by researchers and commercial groups in the last 90s and early 2000s, to the explosion of fuzzing topics at conferences around the world about 5 years ago its come a long way.
As [...]

I’m a week or two late on this, but I think that the community as a whole has paid far too little attention to the advisory released a few weeks ago by the folks at C4/CERT, and the response to them by Rockwell. Full disclosure, I have not personally verified these findings [...]

To a lot of you, this is post isn’t going to tell you anything you don’t already know, but for others I think it needs to be said again.  MAC and IP addresses are easily changeable and are useless for authentication.
Far too often when we’re on site we see security measures that rely heavily on [...]

Being one of the people who tends to be more interested in the pointy end of the security stick, I’ve been looking forward to this training material being released since I first heard of it several months ago.  The good folks over at Offensive Security have put together a great training course, and the base [...]

Onto a few more highlights from Blackhat.  Dowd, Smith, and Deweys presentation on The Language of Trust was excellent, and the bug highlighted in the presentation, MS09-035, is going to be around for a very long time.  This bug was the result of a typo, an ‘&’ where one shouldn’t have been.  An interesting and [...]

Just a quick update on the happenings here at Blackhat.  The good news is that this year the quality of the presentations seems to have improved, or maybe I’be just gotten better at choosing interesting sessions.
Most of the research that had a direct impact on control systems, specifically in the electric sector, was presented yesterday.  [...]

Its that time of year again, and tomorrow I’ll be heading out to Las Vegas for Blackhat, Defcon, and Bsides.  As usual theres a lot of great research being presented, and there seems to be a bit more SCADA research being presented each year.
I’ll be blogging about any of the presentations that I think are [...]