Conceptos de OT para Blue Teamers - Santiago Abastante & Matias Manassero - Ekoparty 2021: BlueSpace
Ekoparty Security Conference via YouTube
Overview
This course covers the following learning outcomes and goals: understanding Industrial Control System (ICS) technologies, exploring ICS architecture, learning about attacks on ICS, implementing Intrusion Detection Systems (IDS), analyzing detection use cases, understanding the characteristics of an IDS in Operational Technology (OT) environments, delving into Cyber Threat Intelligence, exploring MITRE ATT&CK framework, and practicing Cyber Threat Hunting techniques. The course teaches skills such as identifying ICS components, setting up IDS for OT environments, analyzing cyber threats using threat intelligence, and conducting threat hunting activities. The teaching method involves theoretical explanations, case studies, and practical examples. The course is designed for Blue Teamers interested in enhancing their knowledge and skills in defending Industrial Control Systems against cyber threats.
Syllabus
Intro
Industrial Control System Technologies (1)
Industrial Control Systems Architecture
Attacks on Industrial Control Systems
Intrusion Detection Systems
Detection Use Cases
Characteristics of an IDS OT
Cyber Threat Intelligence
MITRE ATT&CK
Cyber Threat Hunting
Taught by
Ekoparty Security Conference