performing-scada-hmi-security-assessment

Featured

Perform security assessments of SCADA Human-Machine Interface (HMI) systems to identify vulnerabilities in web-based HMIs, thin-client configurations, authentication mechanisms, and communication channels between HMI and PLCs, aligned with IEC 62443 and NIST SP 800-82 guidelines.

AI & Automation 16,326 stars 1981 forks Updated 2 weeks ago Apache-2.0

Install

View on GitHub

Quality Score: 97/100

Stars 20%
100
Recency 20%
90
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Performing SCADA HMI Security Assessment ## When to Use - When assessing the security posture of HMI systems in SCADA/DCS environments - When evaluating web-based HMI interfaces for common web vulnerabilities - When auditing HMI authentication, authorization, and session management - When testing communication security between HMIs and PLCs/RTUs - When preparing for IEC 62443 or NERC CIP compliance assessments **Do not use** for testing HMIs in active production without a maintenance window and rollback plan, for PLC-level protocol analysis (see performing-s7comm-protocol-security-analysis), or for general web application testing on non-OT systems. ## Prerequisites - HMI system inventory with vendor, version, and network configuration details - Lab or test environment mirroring production HMI setup (preferred for active testing) - Authorization from plant operations for testing during maintenance windows - NIST SP 800-82 and IEC 62443 security requirements documentation - Network capture capability on HMI-to-PLC communication segment ## Workflow ### Step 1: Assess HMI Attack Surface ```python #!/usr/bin/env python3 """SCADA HMI Security Assessment Tool. Evaluates HMI security across authentication, communication, configuration, and web interface categories aligned with IEC 62443 and NIST SP 800-82 requirements. """ import json import sys from datetime import datetime from typing import Dict, List try: import requests except ImportError: print("Install req...

Details

Author
mukul975
Repository
mukul975/Anthropic-Cybersecurity-Skills
Created
3 months ago
Last Updated
2 weeks ago
Language
Python
License
Apache-2.0

Bundled in these plugins

cybersecurity-skills

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

performing-s7comm-protocol-security-analysis

Perform security analysis of Siemens S7comm and S7CommPlus protocols used by SIMATIC S7 PLCs to identify vulnerabilities including replay attacks, integrity bypass, unauthorized CPU stop commands, and program download manipulation exploiting weaknesses in S7-300, S7-400, S7-1200, and S7-1500 controllers.

16,326 Updated 2 weeks ago
mukul975
AI & Automation Featured

performing-ot-network-security-assessment

This skill covers conducting comprehensive security assessments of Operational Technology (OT) networks including SCADA systems, DCS architectures, and industrial control system communication paths. It addresses the Purdue Reference Model layers, identifies IT/OT convergence risks, evaluates firewall rules between zones, and maps industrial protocol traffic (Modbus, DNP3, OPC UA, EtherNet/IP) to detect misconfigurations, unauthorized connections, and attack surfaces in critical infrastructure.

16,326 Updated 2 weeks ago
mukul975
AI & Automation Featured

detecting-attacks-on-scada-systems

This skill covers detecting cyber attacks targeting Supervisory Control and Data Acquisition (SCADA) systems including man-in-the-middle attacks on industrial protocols, unauthorized command injection into PLCs, HMI compromise, historian data manipulation, and denial-of-service against control system communications. It leverages OT-specific intrusion detection systems, industrial protocol anomaly detection, and process data analytics to identify attacks that traditional IT security tools miss.

16,326 Updated 2 weeks ago
mukul975