OT Resources

Repositories

• Awesome Industrial Control System Security
• Industrial Control System Security Tools
• Awesome Security Resources

Textbooks

• Practical Industrial Cybersecurity: ICS, Industry 4.0, and IIoT
• NIST: Guide to OT Security
• Industrial Network Security: Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems
• Pentesting Industrial Control Systems: An ethical hacker's guide to analyzing, compromising, mitigating, and securing industrial processes
• A Dragos Industrial Control System Security Reading List
  • Very thorough reading list following Dragos' training course outline. Dozens of books/papers included.

Misc. Reading

• SANS Institute: Practical Industrial Control System (ICS) Cybersecurity: IT and OT Have Converged - Discover and Defend Your Assets
  • Overview of how the convergence of IT and OT is enabling better management of control systems, but also introducing problems, particularly with security.
• SANS Institute: ICS Defense: It's Not a "copy-paste" from an IT playbook
  • Description of how OT security requires a different approach than traditional IT security.
• The Threat to ICS
  • SANS talk discussing the threats to ICS and the gaps in current security.
• SANS ICS Security YouTube Channel
  • 223 videos, mostly talks, about ICS security
• SANS Institute ICS Library
  • Collection of various resources similar to above.
• Dragos Inc.: Analyzing the Threat to Electric Grid Operations
• Dragos Inc.: The Industrial Cyber Threat Landscape: The role of the private sector and government in addressing cyber threats to energy infrastructure
  • Transcript of a hearing before the Committee on Energy and Natural Resources of the US Senate.  Mostly focuses on regulation, but description of the threat landscape is good.

Professional Training

• ICS cybersecurity academy - https://ics-cybersecurity.academy/next-trainings/online-training/
• CISA ICS training (free, web-based) - https://www.cisa.gov/ics-training-available-through-cisa
• SANS ICS410 - https://www.sans.org/cyber-security-courses/ics-scada-cyber-security-essentials/ - meant to provide a bridge for people with prior experience in one field but not the other (ICS or security)
• SANS ICS612 - https://www.sans.org/cyber-security-courses/ics-cyber-security-in-depth/ - entry level overview of ICS security
• IAEA Nuclear Security E-Learning - https://www.iaea.org/topics/security-of-nuclear-and-other-radioactive-material/nuclear-security-e-learning - free, online learning modules
• ICS Cyber Security Institute training - https://icscsi.org/curriculum-assessingics.html

Labs

Free & Virtual

• ICS Security labs with VM exports, slides, notes etc.
• Simulated ICS network teaching about buffer overflow attacks; VM exports available
• OT Security labs

Paid and/or Physical

• EC-Council ICS/SCADA Cyber Security lab environment
• Idaho National Laboratory lab environment
• PwC OT Cyber Lab
• SCADA Testbed (paper providing description of testbed)
• Norway's Directorate of Water Resources and Energy description of lab environment