I am trying to collect as much information as possible regarding Netwitness Network and Endpoint in the ICS and SCADA Networks - I need presentaions and documentations to cover this area.
i am also searching for same
designing the same architecture document for integrating ICS networks
so your are working on same typologies ?
Mohamed and Abu,
Apologies for the late response. However, if this is still something you're interested in I am in the process of developing a use case for RSA NetWitness within ICS/SCADA environments. My goal is to document the use case and also provide a few potentially useful parsers.
These parsers will focus on common protocols (such as S7) that are observed within ICS/SCADA environments. If you have any specifics regarding your environment that you can share, I'll try to include some specific information to that regards.
Thanks for your response
could you share the material with me, which you recently created ? please
Here's a solution brief on the topic:https://www.rsa.com/content/dam/en/solution-brief/threat-detection-and-response-for-it-and-ot-systems.pdf
Retrieving data ...