Skip to content

momalab/ICSPatch

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
experiments
experiments
 
 
lkm_patcher
lkm_patcher
 
 
local_patch_server
local_patch_server
 
 
main
main
 
 
.gitattributes
.gitattributes
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

ICSPatch

ICSPatch is a hotpatching tool for control application binaries on Codesys runtime-compatible PLCs. It can detect and patch out-of-bounds write/read, improper input sanitization, and os command injection vulnerabilities in control applications. It can patch these vulnerabilities via an LKM-based patcher or through JTAG. ICSPatch is tested on Wago PFC 100, PFC200 for Linux-5.10.21, and BeagleBone Black for Linux-4.19.82-ti-rt-r31.

For evaluating ICSPatch, please follow the instructions in our Guide.

Cite us

Rajput, Prashant Hari Narayan, Constantine Doumanidis, and Michail Maniatakos. "ICSPatch: Automated Vulnerability Localization and Non-Intrusive Hotpatching in Industrial Control Systems using Data Dependence Graphs." USENIX Security Symposium. 2023.

Contact us

For more information or help with the setup, please contact Prashant Rajput at [email protected]

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

7 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages