Conceptos de OT para Blue Teamers - Santiago Abastante & Matias Manassero - Ekoparty 2021: BlueSpace

This course covers the following learning outcomes and goals: understanding Industrial Control System (ICS) technologies, exploring ICS architecture, learning about attacks on ICS, implementing Intrusion Detection Systems (IDS), analyzing detection use cases, understanding the characteristics of an IDS in Operational Technology (OT) environments, delving into Cyber Threat Intelligence, exploring MITRE ATT&CK framework, and practicing Cyber Threat Hunting techniques. The course teaches skills such as identifying ICS components, setting up IDS for OT environments, analyzing cyber threats using threat intelligence, and conducting threat hunting activities. The teaching method involves theoretical explanations, case studies, and practical examples. The course is designed for Blue Teamers interested in enhancing their knowledge and skills in defending Industrial Control Systems against cyber threats.