Featured : Post
Threat Hunting Part 2: Hunting on ICS Networks
In this edition of the Dragos Threat Hunting on ICS network series, we will compare threat hunting on industrial networks with concepts from the wider threat hunting community. We will also look at how the unique characteristics of industrial networks can be used to an advantage as network defense professionals
Featured : Post
Threat Hunting Part 1: Improving Through Hunting
This post is a first in series that will describe hunting, discuss best practices and explain our approach and lessons. Because hunting in industrial infrastructure is important to all of us and with focus and effort we can accomplish it.
Featured : Post
Stop Breaches, Safeguard Civilization
Today Crowdstrike and Dragos issued a joint press release to finally announce the partnership we’ve developed over the course of the last year.
Featured : Video
Analyzing CRASHOVERRIDE
This webcast explores what is known and not known about the CRASHOVERRIDE framework and how it affects our understanding of how grid operations can be impacted.
Featured : Whitepaper
CRASHOVERRIDE
CRASHOVERRIDE is a malware framework that has not been disclosed before today but is the capability used in the cyber-attack on the Ukraine electric grid in 2016 (not the 2015 attack).
Featured : Whitepaper
Insight into ICS SOC (pdf)
As industrial control systems (ICS) become more interconnected with each other and homogenous, there needs to be sufficient compensating controls put into place to ensure the safety and reliability of the operations.
Featured : Industry News
Project MIMICS - Stage One
What can the community learn in terms of realistic metrics and data points around malware in modern industrial control systems (MIMICS) from completely public datasets? That’s what project MIMICS sets out to do.
