Archive for 'Development Tools'
Using KillerBee with ZigBee devices
Yesterday I received a few of the Raven ZigBee USB sticks with the KillerBee firmware loaded on it, thank you Joshua Wright. I grabbed the latest version of Killerbee and started playing around with KillerBee and the ZigBee sticks. KillerBee is an 802.15.4 exploration and exploitation framework. It was extremely easy to get running, I [...]
Author: Charles Perine
Posted: June 24th, 2010 under Development Tools, S4, Wireless.
Comments: 1
Best Way to Fuzz Part 2
A few thoughts after the intelligent comments, additional info, sound and fury:
Microsoft is in the very rare top tier of companies spending time and money on security. In gross $ and time probably number 1 and very high on a percentage of security to software development time. They are also among the most attacked. So [...]
Author: Dale Peterson
Posted: February 5th, 2010 under Development Tools, Security Tools, The Rack.
Comments: 2
Best Way to Fuzz?
There was an interesting discussion and information on what is the “best way from an ROI measure” to fuzz test at the CERT sponsored Vulnerablity Disclosure Workshop in DC this week. It led to some tweets back and forth between Digital Bond alumni Matt Franz and myself. First some background:
Fuzz testing is used by vendors, [...]
Author: Dale Peterson
Posted: February 3rd, 2010 under Development Tools, Security Tools, The Rack.
Comments: 7
Honeywell C300 Controller Achilles Certified . . . with Firewall
I was first encouraged and then disappointed to read the press release announcing Honeywell’s Experion C300 Controller had achieved Achilles Level 1 Certification.
I was pleased to see another vendor stepping up to get their controller protocol stack tested. Controller protocol stack crashes are still a serious problem with many falling over with simple fuzz testing [...]
Author: Dale Peterson
Posted: December 1st, 2008 under Development Tools, Security Tools.
Comments: 2
Automatic Patch-Based Exploit Generation
Reversing patches to create exploits is nothing new, and it tends to occupy the time of a lot of security researchers around the 2nd Tuesday of every month, but an interesting research paper was published recently from a few graduate students at CMU, Berkeley, and Pittsburgh that offers a new twist on an old topic. [...]
Author: Daniel Peck
Posted: April 24th, 2008 under Calculating Risk, Development Tools.
Comments: none
S4 Keynote – Steve Lipner of Microsoft
I’m very pleased to announce that Steve Lipner, Microsoft’s Senior Director of Security Engineering Strategy in Trustworthy Computing, is the Day One Keynote at our SCADA Security Scientific Symposium (S4). All physical attendees will also receive a copy of his book, The Security Development Lifecycle. See the full agenda and register.
Steve’s keynote is titled [...]
Author: Dale Peterson
Posted: December 3rd, 2007 under Development Tools, S4.
Comments: 1
Software Quality Varies in OPC Servers
The headline on this blog is hardly shocking, but software quality does not get enough attention in the control system community. We now have three strong data points that show all OPC servers are not created equal.
1. The latest is Landon’s work to verify configuration recommendations in Part III of the OPC Security whitepaper series. [...]
Author: Dale Peterson
Posted: August 20th, 2007 under Development Tools, OPC.
Comments: 1
‘Unraveling SCADA Protocols’ at Defcon15
Not like it’s a topic that needs any more attention, but I thought I would share some opinions from some attendees who gave me a call right after the talk was over with. Within the first two minutes Ganesh and Tipping Point/3Com revealed that they would not be releasing the tool as it would “make [...]
Author: Landon Lewis
Posted: August 6th, 2007 under Conferences, Development Tools, IDS / IPS, SCADA Protocols, Vulnerability Disclosure.
Comments: 1
LLDP Fuzzer Released
If you pay close attention to the pen-test mailing list you’re probably aware of the LLDP fuzzer that was released a few days ago. The fuzzer is accompanied by a very nice white paper explaining the protocol and the individual test cases.
I looked around for different SCADA devices that support LLDP and only ran [...]
Author: Landon Lewis
Posted: May 9th, 2007 under Development Tools, OPC.
Comments: 1
Achilles Controller Certification
Digital Bond is a small, I like to say boutique, SCADA security research and consulting practice. We try to focus on projects that will have a significant and near term positive impact on the SCADA security community. I believe we have a pretty good track record with our SCADA IDS signatures, Nessus plugins, S4 [...]
Author: Dale Peterson
Posted: February 28th, 2007 under Development Tools, The Rack.
Comments: none