工具分享

灯塔资讯中心Beta版本发布

我们实验室于近期推出了一个工控安全资讯搜集与分享工具https://cert.plcscan.org),长久以来我们一直苦恼于泊来、转译的工控安全和关键基础设施安全类的“洋新闻”对我们的滋扰,并且在时常在朋友圈刷屏,为此我们实现了这个小工具,灯塔资讯中心会定期分类搜集优质的安全资讯,我们可以及时了解最新安全资讯,而对于最新的漏洞情报我们也可以提前正视这些情报是否对我们真正产生影响。
灯塔资讯中心主要包含如下几个功能:
实时资讯包含:ICS/SCADA安全、关键基础设施安全、国土安全、网络安全情报、网络战、国内舆情跟踪。
工控漏洞跟踪包含:来自美国ICS-CERT官方的最新警报、安全通告、漏洞公告、月报。
工控安全标准:国内已发布和在研的工控安全标准和规范。
数据统计:资讯的一些数据统计。

灯塔资讯中心同时兼容手机与PC访问,如果您对该工具有任何意见和建议均可通过邮件与我们取得联系。

点击联系我们

点击这里访问灯塔资讯中心

另外我们需要感谢如下isssource、securityweek、inhomelandsecurity、infosecurity-magazine等等站点提供的优质的一手的原创工控安全资讯信息和网络安全威胁情报。

About Z-0ne

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

最新工业控制系统漏洞

ICS-CERT Advisory Feed
Omron CX-Supervisor

This advisory includes mitigations for improper restriction of operations within the bounds of a memory buffer, out-of-bounds read, use-after-free, an. . . read more Wed, 17 Oct 2018 08:55:45 EDT

LCDS – Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA

This advisory includes mitigations for untrusted pointer dereference, out-of-bounds read, integer overflow to buffer overflow, path traversal, out-of-. . . read more Tue, 16 Oct 2018 14:44:39 EDT

NUUO NVRmini2 and NVRsolo

This advisory includes mitigations for stack-based buffer overflow and leftover debug code vulnerabilities in NUUO's NVRmini2 and NVRsolo network. . . read more Thu, 11 Oct 2018 10:10:11 EDT

NUUO CMS

This advisory includes mitigations for use of insufficiently random values, use of obsolete function, incorrect permission assignment for critical res. . . read more Thu, 11 Oct 2018 10:05:11 EDT

Delta Industrial Automation TPEditor

This advisory includes mitigations for out-of-bounds write and stack-based buffer overflow vulnerabilities in the Delta Industrial Automation TPEditor. . . read more Thu, 11 Oct 2018 10:00:20 EDT

GE iFix

This advisory includes mitigations for an unsafe ActiveX control marked safe for scripting vulnerability in a Gigasoft component affecting GE’s iFix. . . read more Tue, 09 Oct 2018 10:30:34 EDT

Siemens SCALANCE W1750D

This advisory includes mitigations for a cryptographic issues vulnerability in Siemens' SCALANCE W1750D direct access point hardware.. . . read more Tue, 09 Oct 2018 10:25:37 EDT

Siemens ROX II

This advisory includes mitigations for improper privilege management vulnerabilities in the Siemens ROX II products.. . . read more Tue, 09 Oct 2018 10:20:19 EDT

Siemens SIMATIC S7-1200 CPU Family Version 4

This advisory includes mitigations for a cross-site request forgery vulnerability in the Siemens SIMATIC S7-1200 CPU products.. . . read more Tue, 09 Oct 2018 10:15:18 EDT

Siemens SIMATIC S7-1500, SIMATIC S7-1500 Software Controller and SIMATIC ET 200SP Open Controller

This advisory includes mitigations for a denial of service from improper input validation vulnerability in the Siemens SIMATIC S7-1500, SIMATIC S7-150. . . read more Tue, 09 Oct 2018 10:10:22 EDT

Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server

This advisory includes information on the predictable from observable state, hidden functionality, and missing encryption of sensitive data vulnerabil. . . read more Tue, 09 Oct 2018 10:05:48 EDT

Fuji Electric Energy Savings Estimator

This advisory includes mitigations for an uncontrolled search path element (DLL Hijacking) vulnerability in the Fuji Electric Energy Savings Estimator. . . read more Tue, 09 Oct 2018 10:00:12 EDT

Carestream Vue RIS

This advisory includes mitigations for an information exposure through an error message vulnerability in the Carestream Vue RIS, a web-based radiology. . . read more Thu, 04 Oct 2018 10:10:11 EDT

Change Healthcare PeerVue Web Server

This advisory includes mitigations for an information exposure through an error message vulnerability in the Change Healthcare PeerVue Web Server.. . . read more Thu, 04 Oct 2018 10:05:49 EDT

WECON PI Studio

This advisory includes information on stack-based buffer overflow, out-of-bounds write, and out-of-bounds read vulnerabilities in WECON’s PI Studio. . . read more Thu, 04 Oct 2018 10:00:35 EDT

Delta Electronics ISPSoft

This advisory includes mitigations for a stack-based buffer overflow vulnerability in the Delta Electronics ISPSoft software.. . . read more Tue, 02 Oct 2018 10:10:16 EDT

GE Communicator

This advisory includes mitigations for a heap-based buffer overflow vulnerability in GE's Communicator, an application for programming and monito. . . read more Tue, 02 Oct 2018 10:05:06 EDT

Entes EMG 12

This advisory includes mitigations for improper authentication and information exposure through query strings in GET request vulnerabilities in the En. . . read more Tue, 02 Oct 2018 10:00:15 EDT

Emerson AMS Device Manager

This advisory includes mitigations for improper access control and improper privilege management vulnerabilities in the Emerson AMS Device Manager sof. . . read more Thu, 27 Sep 2018 10:15:51 EDT

Fuji Electric Alpha5 Smart Loader

This advisory includes information on classic buffer overflow and heap-based buffer overflow vulnerabilities in Fuji Electric's Alpha5 Smart Load. . . read more Thu, 27 Sep 2018 10:10:45 EDT