Application Security Weekly: OT Security

It's no surprise that OT security has fared poorly over the last 30+ years. To many appsec folks, these systems have uncommon programming languages, unfamiliar hardware, and brittle networking stacks. They also tend to have different threat scenarios. Many of these systems are designed, successfully, to maintain availability. But when a port scan can freeze or crash a device, that availability seems like it hasn't put enough consideration into adversarial environments. We chat about the common failures of OT design and discuss a few ways that systems designed today might still be secure 30 years from now.

Meet Our Speakers

Huxley Barbee

Contributor

Subscribe Now

Get the latest news and expert insights delivered in your inbox.

Welcome to the club! Your subscription to our newsletter is successful.


Related Resources

Podcasts
The Death and Rebirth of Vulnerability Management (RSAC25)
Jeff and HD explore the current state of vulnerability management, what’s required to truly prevent real-world incidents, new perspectives that are...
Podcasts
From Air Force to Exploits: HD Moore on MetaSploit, runZero, and Building Like a Hacker
Greg and HD explore the power and challenges of open source, what it means to build like a hacker, and why finding flaws in your own tools is part...
Podcasts
Risky Biz Podcast, Ep 785: Signal-gate + HD Moore on New Approaches to Exposure Management
HD Moore joins this episode of the Risky Business Weekly podcast to talk about how network vulnerability scanning has atrophied, and what he's...
Podcasts
Risky Biz Interview: runZero on Inside-Out Attack Surface Management
In this Risky Business News sponsor interview, Catalin Cimpanu talks with runZero founder and CEO HD Moore about the company’s latest capability, a...

See Results in Minutes

See & secure your total attack surface. Even the unknowns & unmanageable.

Discover the new era of exposure management!