This repository contains tips, tricks, tools, and tactics for incident response and digital forensics in industrial environments. The data here represents a community driven effort to help educate and equip individuals responsible for industrial control systems to quickly and accurately respond to threats.
This is a community project! We'd love your thoughts, inputs, and ideas. To submit information to this repository, the following steps are required.
- If you don't have contributor access to this repo, fork the project.
- Make the desired changes to the project you forked.
- Create a pull request to submit your changes.
If you need help, please create an issue and we can try to help.
Make sure that changes follow the rules below:
- Do not submit copyright protected information without written approval by the copyright owner. We will need to verify the approval before the pull request can be approved.
- For information controlled by distribution or other legal protections (SANS reading room, IEEE publications, IEC publications, etc), do not post the document itself. Instead, post a link and annotate where the information is freely available or requires a subscription or purchase.
- Do not post leaked or stolen information.