EVALUATING ATTACK SURFACE MANAGEMENT IN AN INDUSTRIAL CONTROL SYSTEM (ICS) ENVIRONMENT: LEVERAGING A RECON FTW FOR THREAT CLASSIFICATION AND INCIDENT RESPONSE

Author

Nathalia de Sa Soares, Louisiana State University at Baton RougeFollow

Semester of Graduation

Fall 2023

Degree

Master of Science in Computer Science (MSCS)

Department

Computer Science

Document Type

Thesis

Abstract

Protecting Industrial Control Systems (ICS) from cyber threats is paramount to
ensure the reliability and security of critical infrastructure. Organizations must proactively identify vulnerabilities and strengthen their incident response capabilities as attack vectors evolve. This research explores implementing an Attack Surface Management (ASM) approach, utilizing Recon FTW, to assess an operating ICS environment’s security posture comprehensively.
The primary objective of this research is to develop a tool for performing recon-
naissance in an ICS environment with a non-intrusive approach, enabling the realistic simulation of potential threat scenarios and the identification of critical areas requiring immediate attention and remediation. We aim to replicate standard information-gathering techniques employed by adversaries and show the efficiency of the methods.
The research outcomes will provide valuable insights into incident response readi-
ness and deliver an efficient, reliable, and fast tool for performing basic reconnaissance without invasive methods. The findings contribute to developing a comprehensive incident response strategy explicitly tailored for ICS environments, ultimately bolstering the resilience and security of the critical infrastructure.

Date

11-2-2023

Recommended Citation

de Sa Soares, Nathalia, "EVALUATING ATTACK SURFACE MANAGEMENT IN AN INDUSTRIAL CONTROL SYSTEM (ICS) ENVIRONMENT: LEVERAGING A RECON FTW FOR THREAT CLASSIFICATION AND INCIDENT RESPONSE" (2023). LSU Master's Theses. 5864.
https://repository.lsu.edu/gradschool_theses/5864

Committee Chair

Richard III, Golden G.