Published on March 31st, 2020 📆 | 6536 Views ⚑
0Pen Testing ICS and Other Highly Restricted Environments – SANS Pen Test HackFest Summit 2019
TTS
View upcoming Summits: http://www.sans.org/u/DuS
Presenter:
Don C. Weber (@cutaway), Principal Consultant, Founder, Cutaway Security, LLC, Instructor, SANS Institute
“Congratulations, you have been selected to conduct a penetration test of our industrial control system (ICS) environment. Please remember, you cannot scan anything, you cannot install anything, and you cannot break anything. Your point of contact, who will watch every move you make, will be...”
This is not a joke. More and more companies are requesting penetration tests of their ICS assets. But how can you conduct testing with these restrictions and provide actionable information to secure the customer's environments? This presentation will discuss how to scope and conduct this type of assessment. Attendees will walk away with the skills needed to safely evaluate critical networks and assets and make the customer's team comfortable about the assessment.
source
Gloss