Author Topic: Want to learn more about SCADA  (Read 2037 times)

0 Members and 1 Guest are viewing this topic.

Offline lucid

  • #Underground
  • Titan
  • **
  • Posts: 2683
  • Cookies: 243
  • psychonaut
    • View Profile
Want to learn more about SCADA
« on: June 21, 2014, 07:08:34 am »
Some of you may know about SCADA technology, or at least what SCADA is. Some of you may have no clue what I'm talking about because it's still somewhat newish in the security industry. Anyway, I've had a strong interest in learning more about this topic for quite some time. There seems to be very little quality information on the web about learning how SCADA systems work, SCADA hacking, and so forth. Anytime I search for it all I find is stuff about Stuxnet.

Does anyone share this interest with me? Does anyone here already know about SCADA systems? Or some avenue of learning about them? Aside from Stuxnet, most of what I find is sites where you can sign up for classes on SCADA systems for the low low price of 4000 usd.
"Hacking is at least as much about ideas as about computers and technology. We use our skills to open doors that should never have been shut. We open these doors not only for our own benefit but for the benefit of others, too." - Brian the Hacker

Quote
15:04  @Phage : I'm bored of Python

Z3R0

  • Guest
Re: Want to learn more about SCADA
« Reply #1 on: June 22, 2014, 05:37:44 am »
Yes, I have the same interest. I was looking into openscada (www.openscada.org) for a while, but it's ridiculously complicated to setup. The documentation is terrible, and there are no tutorials on their wiki for developing.

Offline lucid

  • #Underground
  • Titan
  • **
  • Posts: 2683
  • Cookies: 243
  • psychonaut
    • View Profile
Re: Want to learn more about SCADA
« Reply #2 on: June 22, 2014, 06:47:53 am »
Holy fucking shit, I can't believe I actually found someone who is also interested in learning about SCADA. I didn't think there was anyone out there. No one at all on this entire hacking community seemed to know about it. Except you my good friend and doctor/boss.

I've been trying to find some kind of useful information on SCADA, and thus far all I've found are pdfs a few pages long outlining some very basic info. I'll look into openscada and see if I can figure it out. What other avenues have you taken to learn about this stuff? It seems ridiculously hard to find any kind of practical information about SCADA/ICS.

EDIT: Dear lord this documentation really is terrible.
« Last Edit: June 22, 2014, 07:48:30 am by lucid »
"Hacking is at least as much about ideas as about computers and technology. We use our skills to open doors that should never have been shut. We open these doors not only for our own benefit but for the benefit of others, too." - Brian the Hacker

Quote
15:04  @Phage : I'm bored of Python

Offline LsD

  • Serf
  • *
  • Posts: 40
  • Cookies: 3
  • Hasta La Victoria Siempre!
    • View Profile
Re: Want to learn more about SCADA
« Reply #3 on: June 22, 2014, 10:27:43 am »
Quote
Holy fucking shit, I can't believe I actually found someone who is also interested in learning about SCADA. I didn't think there was anyone out there. No one at all on this entire hacking community seemed to know about it. Except you my good friend and doctor/boss.

I'll admit I didn't have a clue what SCADA was before I just googled it, but now I'm really interested as well! Is SCADA hacking essentially how people will change the text on traffic advisory signs, lock/unlock doors, and turn on sprinklers-- among a million other examples?

This is obviously a troll thread. If not, then you're inconceivably autistic if you think you can even begin to do this.

Offline frog

  • Knight
  • **
  • Posts: 232
  • Cookies: 16
    • View Profile
Re: Want to learn more about SCADA
« Reply #4 on: June 22, 2014, 12:47:40 pm »
Yes I have been interested in scada systems for years and now you can actually find systems using scada software using sites like shodan. Stuxnet is a perfect example of a worm that targeted scada systems.

Usually scada software is connected to a plc(programmable-logic-controller) of some kind which is essentially a smart switching unit for(usually industrial) equipment. In the case of stuxnet, this was the logic controller for the nuclear centrifuges.
http://www.symantec.com/tv/products/details.jsp?vid=673432595001

As attacking these systems would require more advanced software techniques, I have put my interest in scada on the back burner until I develop the skill to have an effective plan of research.

Offline karsa

  • Peasant
  • *
  • Posts: 117
  • Cookies: 44
    • View Profile
Re: Want to learn more about SCADA
« Reply #5 on: June 22, 2014, 12:59:56 pm »
You could go to linkedin and look for profiles of people and organizations with keywords 'scada' and 'security' or similar. Almost every single one of them has listed a homepage with a wealth of information (articles, whitepapers, videos).
Examples: click, click, click, click.
There's a lot more to be found, but you'd need an account when doing it like this.

Or you could use a search engine with features like searching for specific keywords on a specific site, something along the lines of
Code: [Select]
site:linkedin.com "scada" "security" Maybe contact a few of those people via email or twitter (for less formal communication) to point you to more resources?

My $0.02.
« Last Edit: June 22, 2014, 02:18:09 pm by karsa »

Offline lucid

  • #Underground
  • Titan
  • **
  • Posts: 2683
  • Cookies: 243
  • psychonaut
    • View Profile
Re: Want to learn more about SCADA
« Reply #6 on: June 22, 2014, 09:06:14 pm »
As attacking these systems would require more advanced software techniques, I have put my interest in scada on the back burner until I develop the skill to have an effective plan of research.
This is sort of how I feel, however, I refuse to put it on the backburner. I'll never understand said advanced techniques if I don't try to learn about them now.

As you said, I need to figure out a plan of research....... which seems to be the hardest part.

@karsa - That's a really good idea.
« Last Edit: June 22, 2014, 09:06:55 pm by lucid »
"Hacking is at least as much about ideas as about computers and technology. We use our skills to open doors that should never have been shut. We open these doors not only for our own benefit but for the benefit of others, too." - Brian the Hacker

Quote
15:04  @Phage : I'm bored of Python

Offline frog

  • Knight
  • **
  • Posts: 232
  • Cookies: 16
    • View Profile
Re: Want to learn more about SCADA
« Reply #7 on: June 23, 2014, 09:55:45 am »
My view or opinion is that without a relevant skill-set any plan of research will likely be stop-and-go. Eventually I lose interest because my skill-set is underdeveloped enough that it takes awhile to make any real progress.

@lucid - At this point, the motivation to learn is highlighted and you have a point; to learn more and keep forging progress is the only logical path.

Everybody has their preferred way of doing things. Let's just say I have a rather large back-burner.

Offline nrael

  • Peasant
  • *
  • Posts: 66
  • Cookies: -7
    • View Profile
Re: Want to learn more about SCADA
« Reply #8 on: June 23, 2014, 03:24:42 pm »
they always speak at defcon about SCADA

just search 'defcon scada' in google, and you'll find a lot of pdf presentations, videos...

maybe also check the defcon presentations

Offline LsD

  • Serf
  • *
  • Posts: 40
  • Cookies: 3
  • Hasta La Victoria Siempre!
    • View Profile
Re: Want to learn more about SCADA
« Reply #9 on: June 24, 2014, 12:24:33 am »
Quote
You could go to linkedin and look for profiles of people and organizations with keywords 'scada' and 'security' or similar. Almost every single one of them has listed a homepage with a wealth of information (articles, whitepapers, videos).
Examples: click, click, click, click.
There's a lot more to be found, but you'd need an account when doing it like this.

Or you could use a search engine with features like searching for specific keywords on a specific site, something along the lines of
Code: [Select]

site:linkedin.com "scada" "security"

Maybe contact a few of those people via email or twitter (for less formal communication) to point you to more resources?

My $0.02.

@Karsa-- Thanks for posting that, I hadn't thought to search shodan for such things but it makes complete sense. I remember when I was a kid thinking I was the shit for getting onto the security cameras of a store across the world lol.
You also made a good point concerning Linkedin, it's essentially fucking useless as anything more than an online resume repository :P I've never used linkedin for social engineering, but that's about to change ;)

This is obviously a troll thread. If not, then you're inconceivably autistic if you think you can even begin to do this.

Offline karsa

  • Peasant
  • *
  • Posts: 117
  • Cookies: 44
    • View Profile
Re: Want to learn more about SCADA
« Reply #10 on: June 24, 2014, 12:57:53 am »
...
Funny how checking throwaway emails for spam leads to something potentially useful.

Offline xnuzi

  • NULL
  • Posts: 1
  • Cookies: 0
    • View Profile
Re: Want to learn more about SCADA
« Reply #11 on: July 07, 2014, 10:58:57 pm »
I am interested too.... I have exploited some scada systems by some common exploits (blindly, without knowing how & why it works. Just by using some exploits), but its long time ago. Now those vulnerabilities are patched... I want to learn deeply...

Offline LsD

  • Serf
  • *
  • Posts: 40
  • Cookies: 3
  • Hasta La Victoria Siempre!
    • View Profile
Re: Want to learn more about SCADA
« Reply #12 on: July 08, 2014, 12:15:11 am »
Does anyone have experience with SCADA hacking and war-driving? I'd imagine driving around the right parts of town could yield some nice surprises :)

This is obviously a troll thread. If not, then you're inconceivably autistic if you think you can even begin to do this.

Offline karsa

  • Peasant
  • *
  • Posts: 117
  • Cookies: 44
    • View Profile
Re: Want to learn more about SCADA
« Reply #13 on: July 08, 2014, 12:56:44 am »
Does anyone have experience with SCADA hacking and war-driving? I'd imagine driving around the right parts of town could yield some nice surprises :)
I've been thinking of going wardriving for a while now, but always put it off for stupid reasons. WiGLE's map is great for these sort of activities, but I don't know if wireless AP's from industrial areas are shown on the map. Couldn't find any such AP's in my vicinity, maybe your search yields better results.

Offline chapp

  • Peasant
  • *
  • Posts: 87
  • Cookies: 2
    • View Profile
Re: Want to learn more about SCADA
« Reply #14 on: July 30, 2014, 10:23:56 pm »
Hacking SCADA isn't any different from anything else. SCADA products mostly deploy custom software, but in the end you usually have some service listening on some TCP ports and accepting certain commands. If you can get your hands on the service binaries, you just have to reverse and find vulnerabilities.

The Russian group SCADA StrangeLove has published many vulnerabilities in SCADA products over the last couple of years.

http://scadastrangelove.blogspot.com/