Debug7：利用固件修改攻击远程调试西门子 S7 PLC.pdf

1、#BHASIA BlackHatEventsDebug 7Leveraging a Firmware Modification Attack for Remote Debugging of Siemens S7 PLCsRon Semel|Eyal SemelJoint work with Prof.Eli Biham,Dr.Sara Bitan and Alon DanknerFaculty of Computer Science,Technion Israel Institute of Technology#BHASIA BlackHatEventsWho Are We?Ron Semel

2、Software engineer at MicrosoftMicrosoft Defender for Endpoint(MDE)Security researcherComputer science faculty,Technionhttps:/ SemelSecurity researcherComputer science faculty,Technionhttps:/ BlackHatEventsTalk Topics Introduction and Previous Research Runtime Manipulation of Siemens S7 PLCs Firmware

3、 Implementation of Debug 7-a Remote Debugger for Siemens S7 PLCs Debugger Video Demo Conclusions#BHASIA BlackHatEventsThe 4thIndustrial Revolution Industry 4.0 Can anyone imagine life without:Our necessities are made accessible via automated industrial control systems.Wastewater treatment plants pur

4、ify water.Complex signaling systems manage traffic.Food is grown using automatic irrigation systems.Drinking waterFoodTransportationAmazonAutomated warehouses manage our online purchases#BHASIA BlackHatEventsThe 4thIndustrial Revolution Industry 4.0 These smart control systems include:Mass integrati

5、on of IOT devices.Extensive cloud communication.Smart automationAll these cool new features come with risks#BHASIA BlackHatEventsAttacks on Critical Infrastructure Cyber attacks on critical infrastructure can be catastrophic!We have a great responsibility securing these systems!https:/ BlackHatEvent

6、sPLC Programmable Logic ControllerPLCs are rugged computers used for industrial automation.They are the core component of an ICS.They read input data from field devices such as sensors.Outputs are triggered based on pre-programmed code.A bridge between the virtual world and the physical world.#BHASI