If you have ever used Metasploit before , then you already know that it’s a tool used for penetration testing, vulnerability assessment and exploitation. I would like to share with you how to find ICS modules in Metaploit’s database. Those modules can aid you for ICS vulnerability assessment. The number of modules is limited and small when compared to IT modules. The reason is many of ICS software are not available for the public, thus developing a module is difficult and rare. I have researched a list of keywords that can help you get results. Typing “ICS” keyword won’t get you anything. So I assembled a list of keywords based on vendor, software names and functionality. Normally most of ICS modules are old but to my surprise I found modules dating back to 2020 and 2019. Previous and similar work like SCADAhacker is a bit outdated, so my effort is to update it . There is still a value to those old modules, as we know most of ICS are old or unpatched.
- 3s
- 7-Technologies
- D20
- DirectLOGIC
- FactoryLink
- General Electric
- Genesis32
- Hmi
- Measuresoft
- Modbus
- OPC Client
- Operator Workstation
- Plc
- ProConOS
- Rockwell
- Scada
- ScadaPro
- Siemens
- TwinCat
- Unitronics
- Winlog
- abb
- advantech
- bacnet
- beckhoff
- citect
- codesys
- delta
- ethernet/ip
- factorylink
- ge
- iconics
- igss
- indusoft
- koyo
- ladder logic
- modbus
- modicon
- moxa
- phoenixcontact
- procyon
- realwin
- schneider
- sielco sistemi
- start/stop
- yokogawa