Saturday, May 18, 2013

New honeypot detects hackers attacking SCADA-systems


Conpot allows cybercriminals to calculate that scan the IP-addresses of SCADA-systems, and then keep track of their activities.

IT-specialist Lukas Rist designed to lure hackers who have attacked the system critical infrastructure.

Conpot allows cybercriminals to calculate that scan the IP-addresses of SCADA-systems, and then keep track of their activities. The lure mimics the system Siemens SIMATIC S7-200, which connects to the Internet via an I / O CP 443-1. Conpot supports two network protocols Modbus and SNMP, which are commonly used SCADA-systems.

According to the developers, Conpot is also compatible with the man-machine interface and graphical user interfaces that are used to control management systems.


"The main objective - is to make this technology accessible to a wider audience. Not only for IT-specialists, but for system administrators working with ICS-systems that want to prevent cyber attacks on their systems and do not want to subject them to danger, "- said Rist.

Link: https://github.com/glastopf/conpot

No comments:

Post a Comment