ZPLC - "damn vulnerable" PLC
Industrial PLC with common built-in features like RS485, I/Os, relays etc, but intentionally made vulnerable.
This product is ideal for ICS pentesting trainings.
Exploits for ZPLC vulnerabilities are specially designed to be used with Immunity's Canvas.
Other usage cases include: modelling on security conferences and CTF challenges, Defense systems testing, Red&Blue team trainins, testbed for engineers on plants, etc
Available for purchase in two versions: 1. ZPLC Software (firmware, documentation and instructions) 2. ZPLC controller in plastic case DIN mounted
ZPLC Features:
- - Real PLC behaviour/functionality/look GUI, sensors support, relays management all made "the same" style as in common PLCs.
- - "Vendor independent" No risk that somebody would blame you for "illegal, unethical" usage or showing "pro and con" for particular vendor
- - Low hardware cost Famous vendor's PLCs are known to be extremely expensive, so unconvenient for sec training purposes
- - Many vulns illustrated with single ZPLC We have emulated different types of vulnerabilities that were found by our team in different PLCs - put them all in one controller.
- - Vulns and hackers management GUI Sec administrator's interface, allowing to turn on/off different vulns in real time, assign points to CTF players or students for each researched vuln during sec competition or lesson.
- - Periodically Updated with new staff
- - Hints/Advices and other Learning Documentation along with final commercial exploits
Vulnerabilities illustrated:
- SQLi of several flavours
- RCE: remote command injection and remote code execution
- Hard coded creds
- Buffer overflow and DoS vulns
- Unsafe built-in services
- Information leakages
- Firmware unsafe updating
Specification*:
- Protocols supported - RS485, RS232, Modbus, RF 433Mhz, WiFi, Ethernet, I2C
- leds and OLED for indication
- 4 Relays 250v 10A,
- 4 analog I/Os
- firmware: embedded Linux system + python GUI and management
- Power - 5v (usb typeb).
- plastic case DIN mounted, cm 15*5*7 *hardware version may vary
For how to buy information - refer here