Need to update your Linux password policy for better security and/or regulatory compliance (NERC CIP-006 R5.3, perhaps)? In many Linux systems, pam_cracklib is used to enforce password strength requirements but the default settings can be a little confusing. In this post, we’ll demystify some of the options for this handy little library and show how […]

Good news, the Nessus compliance checks work on Tru64 UNIX! Why, might you ask, does anyone care about Tru64? Well, let me tell you… even though support for the OS ends in 2011 and people are generally moving to new platforms, we continue to see Tru64 on many of our control system assessments running very […]

You will be seeing a couple of new names on the blog and throughout the site as we have added to our offensive security team.
Daniel Peck is joining us from SecureWorks, a MSSP, where he was a security researcher. He also is one of the two developers of CaffeineMonkey, a tool to detect and analyze […]

We mentioned AppID’s in our introduction of the OPC Security .audit files for use in compliance testing with the Nessus Vulnerability Scanner.
While it is not difficult to find the AppID for your OPC server, we have started a SCADApedia page with the AppID’s to help you out. A lot of this information came from Lluis […]

Part 3 of the recently released OPC Security whitepaper series provided step by step instructions for implementing the available security measures for OPC clients and servers. It is complex, and we wondered if there was a simple way to audit OPC servers compliance with Part 3. We still are wondering, but we have a partial […]

When iccpsic was released to vetted subscribers, Matt Franz reminded me that other systems, such as VoIP, use part of the utility stack fuzzed by iccpsic. Siemens PLC’s use the portion of the stack that is fuzzed by iccpsic.
After my last post, I thought it was time for some good news. Ralph Langner of Langner […]

Recently I recorded a podcast with Nate Kube of Wurldtech who has done more hands on controller testing over the past years than anyone I know. It is fascinating to hear the testing techniques, trends and common findings in this specialized and complex field.

 

 Standard Podcast: Play Now | Play in Popup | Download

After a fair amount of soul searching and delay, Digital Bond is finally releasing our iccpsic tool set to subscribers who are vetted asset owners.
This was a difficult decision because this tool set will crash vulnerable ICCP servers. It was what we developed and used to find a number of ICCP protocol implementation vulnerabilities, including […]

There’s been a delay in releasing the final paper of the three part OPC Security Whitepaper series as the paper has been going through some extensive testing. Our initial testing was with a limited amount of servers as a large amount of OPC servers exist and we’ve started to build a list on the SCADApedia […]

Is a presentation on fuzzing SCADA protocols and vulnerabilities like Ganesh Devarajan of 3com/Tipping Point is making at a variety of events widely aimed and attended by hackers of all hat colors irresponsible? We get asked the same question for much more mundane activities including something as “innocent” as disclosing vulnerabilities to US-CERT or items […]