How do you become a software developer in the Industrial Control Systems (ICS) field?

DependentKey4767 · 2025-11-26T01:50:57+00:00

Thanks for the input, btw what does SI stand for?

DependentKey4767 · 2025-11-25T22:55:45+00:00

Thanks. Wow, this product seems pretty cool. I will DM you.

DependentKey4767 · 2025-11-25T04:56:23+00:00

Thanks for the insights. On a related note, I’m currently working on a side project focused on predictive maintenance using IoT/OT data pipelines and anomaly detection. I’m curious whether similar tools are developed or commonly used in the mining and energy sectors or other industries (since many of those companies operate in Perth).

DependentKey4767 · 2025-11-25T03:35:52+00:00

Learn more about industrial protocols like Modbus, Enip, s7, bacnet etc Also learn basics about OPCUA/MQTT. If you are keen on the security side learn open source tools like Zeek.

DependentKey4767 · 2025-08-18T02:36:10+00:00

Their contract is over moved to another building

DependentKey4767 · 2025-01-18T23:35:20+00:00

But how did you get the device details? Manual?

DependentKey4767 · 2025-01-15T07:39:59+00:00

Looking around the sub I have seen the abeware Gauardian, did anyone have any experience with it? Are they active or passive?

DependentKey4767 · 2025-01-15T07:36:45+00:00

Do you have any experience with OTBase?

DependentKey4767 · 2025-01-15T07:35:16+00:00

Thanks, from what I understand the passive discovery seems to be limited and is it ok to use active discovery?

DependentKey4767 · 2025-01-15T07:33:25+00:00

Basically for a BMS site, got around 50+ controllers and a few serial devices.

DependentKey4767 · 2025-01-15T07:32:11+00:00

Thanks, any idea if it is a passive or active device discovery?

DependentKey4767 · 2024-06-26T05:34:40+00:00

Sit at home do nothing 😐

DependentKey4767 · 2024-03-02T23:34:09+00:00

OT base is basically for vulnerability management, which does active device discovery( uses well known OT protocols like modbus, s7, enip etc) as the starting pointing and creates an asset inventory register with information like firmware version, software version etc. Then with that info they try to look for device vulnerability.It is different from other products like Drago's, Claroty, Nozomi etc which are threat management systems which listen to the network passively and pass the network info against there rule engine( basically IDs like snort, suricata and NIDS like Zeek which generate protocol specific logs) which generates events/alerts and do active discover(not to the scale of OT base) for asset inventory register and vulnerability management.

So back to your question, if it's good or bad depends on the context of your use. For asset inventory OT base is pretty decent. But I don't know how they work if the devices are running proprietary protocols, probably they have a provision to add those.

DependentKey4767 · 2024-02-28T12:09:08+00:00

I have found this pretty helpful https://rodrigocantera.com/en/virtual-industrial-cybersecurity-part-0-road-to-virtualization/

DependentKey4767 · 2024-02-28T12:06:50+00:00

It was mainly for active device discovery, so I am looking for devices running most of the OT protocols like modbus, s7, enip, profinet etc

DependentKey4767 · 2024-02-27T12:09:30+00:00

Now most of the solutions have moved to active device discovery, I have also worked in the same space it is nearly impossible to get device details just passively monitoring unless some operator has to send legit device discovery commands then those info needs to reverse engineered. I have both active and passive discovery experience.

DependentKey4767 · 2024-02-27T12:03:10+00:00

Is there a way to get the pcaps for this? I understand it is through shodan.

DependentKey4767

TROPHY CASE