IT-specialist Lukas Rist designed to lure hackers who have attacked the system critical infrastructure.
Conpot allows cybercriminals to calculate that scan the IP-addresses of SCADA-systems, and then keep track of their activities. The lure mimics the system Siemens SIMATIC S7-200, which connects to the Internet via an I / O CP 443-1. Conpot supports two network protocols Modbus and SNMP, which are commonly used SCADA-systems.
According to the developers, Conpot is also compatible with the man-machine interface and graphical user interfaces that are used to control management systems.
"The main objective - is to make this technology accessible to a wider audience. Not only for IT-specialists, but for system administrators working with ICS-systems that want to prevent cyber attacks on their systems and do not want to subject them to danger, "- said Rist.
Link: https://github.com/glastopf/conpot
No comments:
Post a Comment