Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

soap-hil: add scorch demo and options to run without hardware #9

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

soap-hil: add scorch demo and options to run without hardware #9

wants to merge 1 commit into from

Conversation

cmulk
Copy link
Contributor

@cmulk cmulk commented Nov 6, 2024
edited
Loading

New additions to soap-hil:

  • Options to run without HIL (ironic)
  • SCORCH pipeline demo including traffic capture, parsing via Zeek, and saving results to elastic

GhostofGoes
GhostofGoes requested changes Nov 7, 2024
View reviewed changes
Copy link
Collaborator

@GhostofGoes GhostofGoes left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Just a few minor spelling and format issues I found while reading through it.

soap-hil/README.md
This repository contains a topology to demonstrate the Hardware-In-the-Loop (HIL) capabilities of SCEPTRE. The topology is based on the original SOAP (SCEPTRE on a Platter) topology and underlying power model, simulated using PyPower. It includes the integration of a Siemens S7 PLC as HIL, functioning as a simple controller in the power model. This topology also still fully functions without HIL and can be used by selecting a second, "virtual only" control screen on the HMI.
This repository contains a topology to demonstrate the Hardware-In-the-Loop (HIL) capabilities of SCEPTRE. The topology is based on the original SOAP (SCEPTRE on a Platter) topology and underlying power model, simulated using PyPower. It includes the integration of a Siemens S7 PLC as HIL, functioning as a simple controller in the power model. _This topology also still fully functions without HIL and can be used by selecting a second, "virtual-only" control screen that is already included in the HMI configuration._

In addition to the topology, this repo includes a demo attack against the PLC to manipulate and destablize the power system model. In addition, a SCORCH pipeline is included in the scenario which can be used to captur raw PCAP to exportable files, and packet metadata (via filebeat and [Zeek](zeek.org)) to an elastic instance.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

captur -> capture

soap-hil/README.md
### Running an attack scenario in virtual-only mode
A sample 'attack' is implemented through a few means to demonstrate SCEPTRE without a Hardware-In-The-Loop implementation.
1. After launching the experiment, enter the `attacker` machine and launch `msfconsole`
* Start by finding the applicable exploit `search ignition`
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Indentation needed

soap-hil/README.md
4. When finished, open the `exp-break` breakpoint and exit the terminal to allow the pipeline to continue:

![alt text](img/scorch-break-exit.png)
5. At this point the pipeline should complete and you can go back to `Files` tab of the main experiment page do view and download artifacts from the Scorch run:
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

do view -> to view

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@GhostofGoes GhostofGoes GhostofGoes requested changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cmulk @GhostofGoes