2025-04-28 –, TRACK 2
Critical infrastructure like water treatment plants and air traffic control towers are under constant attack by hostile nations, and securing them is a national priority. This workshop covers industrial automation systems, network security monitoring, and incident response. Participants will perform many hands-on projects configuring systems, attacking them, and defending them.
The workshop is structured as a CTF competition. There will be demonstrations of the techniques, and help on the challenges will be available.
We will use Modbus and DNP networks, as well as normal IP-based networks. Software used includes OpenPLC, FactoryIO, Splunk, Velociraptor, and Zeek.
Participants need a laptop capable of running virtual machines, or a few dollars to rent cloud servers.
All class materials are freely available on the Web and may be easily used in other classes.
Sam Bowne has been teaching computer networking and security classes at City College San Francisco since 2000. He has given talks and hands-on trainings at DEF CON, DEF CON China, Black Hat USA, HOPE, BSidesSF, BSidesLV, RSA, and many other conferences and colleges. He founded Infosec Decoded, Inc., and does corporate training and consulting for several Fortune 100 companies, on topics including Incident Response and Secure Coding.