Industrial Control Systems Village
Saturday, September 7, 2024 from 10am to 6pm CT
Sunday, September 8, 2024 from 10am to 3pm CT
High profile industrial control system (ICS) security issues have grabbed headlines and sparked change throughout the global supply chain. The ICS Village allows defenders of any experience level to understand the unique failure modes of these systems and how to better prepare and respond to the changing threat landscape.
Interactive simulated ICS environments, such as Hack the Plan(e)t and Howdy Neighbor, provide safe yet realistic environments to preserve safe, secure, and reliable operations. The ICS Village brings a compelling experience for all experience levels and types, with IT and industrial equipment. Our interactive learning approach invites you to get hands on with the equipment to build your skills.
We bring you real components such as programmable logic controllers (PLC), human-machine interfaces (HMI), remote telemetry units (RTU), and actuators to simulate a realistic environment by using commonly used components throughout different industrial sectors. You will be able to connect your machine to the different industrial components and networks and try to assess these ICS devices with common security scanners to sniff the industrial traffic, and more!
Talks held in the ICS Village
Why is it Running Windows XP?
Presented by: Bryson Bort, CEO/Founder, SCYTHE and Co-Founder, ICS Village
Saturday at 10am and 2pm
Sunday at 10am
Overview: Introduction to the practical space of industrial control systems and critical infrastructure. Why are things the way they are? What is the government doing? How does ICS affect you today? How do you threat model and conduct risk assessments in OT?
Introduction to ICS with demonstration
Presented by: Kenny Warren, Staff OT/Offensive Security Engineer, GRIMM
Saturday at 11am and 3pm
Sunday at 11am
Overview: Overview of Industrial Control Systems (ICS), explaining how they consist of field devices like sensors and valves, controllers such as PLCs and RTUs, and Human-Machine Interfaces (HMIs). We will then discuss ICS network protocols, focusing on Modbus/TCP. I will introduce “TinyTown,” a miniature ICS network range, consisting of a PLC, HMI, physical outputs, and networking components. The talk will also cover ICS network attacks, specifically how Modbus/TCP can be exploited to modify system states. Finally, I will demonstrate using Metasploit to send Modbus commands to the TinyTown PLC, showing how this can manipulate the system to produce a real-world effect.
Cyber Informed Engineering – or – How I Learned to Stop Worrying and Love the Complexity
Presented by: Chris Rose, Senior Director, AEGIS (Architecture, Engineering, Infrastructure and OT Solutions)
MorganFranklin Consulting, Cybersecurity
Saturday at 12pm and 4pm
Sunday at 12pm
Overview: In an era where cyber threats are becoming more sophisticated and targeting the very core of our critical infrastructure, it’s time to elevate our Blue Team activities by rethinking security from the ground up. Cyber Informed Engineering (CIE) offers a transformative approach, positioning cybersecurity as a ‘First Principle’ in the engineering and operation of secure systems. In this talk, I will propose CIE as a model for deeply integrating ‘Secure By Design’ principles into the technical fabric of our defenses, uplifting Blue Team efforts from reactive measures to proactive, deeply embedded resilience. By embracing CIE, we can enhance the technical integration of security practices into daily operations, empowering our Blue Teams to anticipate, detect, and mitigate threats with unprecedented precision and effectiveness. This approach not only strengthens our defenses but also positions us at the forefront of a new wave of thought leadership in information security.
