Jump to content
View in the app

A better way to browse. Learn more.

Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Featured Replies

Posted
You can download the slides of the research I was presenting at RootedCon'11 in Madrid "SCADA Trojans: Attacking the grid". A journey into attacking the power grid.

I presented:

- 0days in Advantech/BroadWin WebAccess SCADA product

- Weak Design/Vulnerabilities in CSE-Semaphore TBOX RTUs

- General attack against EMS Software via State Estimators.

I contacted ICS-CERT to coordinate with Advantech but the vendor denied having a security flaw. So guys, the exploit I'm releasing does not exist. All is product of your mind.

Well, indeed WebAccess is full of bugs.

It is an RPC exploit against WebAccess Network Service, port 4592. It leaks the security code that protects the scada node in addition to demonstrate RCE on XP. Slighly modifications can be done to support other systems.

I use "RPC heap spray", I mean any opcode with the following params "[in] long arg_x, [in][ref][size_is(arg_x)] char * arg_x " can be used to create a fake object to control the execution. It could be done in other ways, but this one is funny.

Check the slides, there is more info about the vulns there.


/>http://www.reversemode.com/downloads/exploit_advantech.zip
/>http://www.reversemode.com/downloads/Scada_Trojans_Ruben_Rootedcon.pdf

Ted.

  • 1 month later...

We're closer than ever before, but we're still light years away from hacking the gas mains so they will explode and provide cover for an operation we're conducting... (Seen SwordFish anybody? Them d00dz has got skillz0rs)

On a serious note, thanks for the share Teddy, interesting as always. :D

HR,

Ghandi

  • Author

Actually I'm a bit more in to PLC's and industrial technology, I've got quite a few PLC's at home I work with. Its quite surprising how some (very large) companies are open to exploits and security related issues so we can expect more to happen in this area...

Ted.

Create an account or sign in to comment

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.