SCADA Penetration Test2022-01-18T13:09:42+03:00

SCADA Systems Penetration Test

Scada system; Collecting continuous and real-time field data from various devices such as Distributed Control Systems (DCS), I / O Systems and intelligent sensors, including automatic control, monitoring and reporting of results, from control of all equipment to production planning, from environmental control units to utility remote control system that gives early warning to the user. The functions of SCADA systems are monitoring, control, data collection and recording of data.

During SCADA Penetration Tests

  • Segmentation Analysis
  • Visibility Analysis
  • Authentication Infrastructure Analysis
  • Patch Analysis
  • Remote Access Analysis
  • Anti-Malware Analysis
  • Cyber Event Monitoring / Response Analysis and Penetration Tests

are carried out.

SCADA Sızma Testleri

Segmentation Analysis

By dividing the existing network into subnets, monitoring and controlling network system communications makes possible cyber-attacks easy to manage and mitigate cyber-attack effects. If one of the hosts in the network segment is compromised, a reduced attack surface is created so that it can rotate. Common attack vectors, such as LLMNR and NetBIOS poisoning, can be partially mitigated by appropriate network partitioning, as they only operate on the local network. In the segmentation test, penetration testing is performed through passive or active analyzes over the existing network topology by making field inspections, segmentation details and the possible security risks are reported.

Visibility Analysis

Logs of control systems are monitored and visibility analysis is reported with data from the field test.

Authentication Infrastructure Analysis

It is the stage where the information obtained by checking the accessibility of authorized accounts in any cyber attack by analyzing whether the authentication methods are secure is reported.

Patch Analysis

In patch analysis, the update and patch management of the operating system and applications are checked and the data obtained are reported.

Remote Access Analysis

This includes identifying and reporting possible security vulnerabilities by determining the reliability of remote access methods and when access is available.

 Anti-Malware Analysis

It is checked whether a solution has been developed to prevent malware from running, and the data obtained is reported.

Cyber ​​Event Monitoring and Response Analysis

Cyber ​​incident policies and procedures should specify who will intervene in the event of a cyber attack. It is reported whether the log is recorded in any log system and whether there is a plan to intervene in cyber attack.

Penetration Tests

Penetration testing is the simulation of cyber attacks and reporting of test results by cyber security experts to determine possible vulnerabilities by performing various tests on firms’ network infrastructures, hardware, software and applications. Penetration tests can be examined in three groups. There are three types of penetration tests: Whitebox Penetration Test, Blackbox Penetration Test and Greybox Penetration Test.

  • Whitebox Penetration Test

In this method, the test specialist is informed by the authorized persons about the whole system and the damages that can be given to the system by the people who have already worked or are currently working in the company are simulated. It is the type of penetration test that has the least risk of damaging the system.

  • Blackbox Penetration Test

The tester simulates the attack by acting as a hacker without any knowledge.

  • Graybox Penetration Test

Simulation of damage caused by an unauthorized user on the internal network by the tester.

Stages of Penetration Testing


It is the stage where the scope and objectives of the penetration test are determined. (type of test, date and time of the test, people who will do the test)

Data Collection

It is the collection of active or passive information from the system to be tested. Active information gathering is the information gathered by contacting the target system directly. Passive information collection is the collection of information over the internet without contacting the target system.

Scanning and Discovery

It is done to understand how the system reacts to attack attempts. It is divided into static analysis and dynamic analysis. Static analysis is to estimate the behavior of the application by examining the application code. Dynamic analysis is to check the code that is running.

Gaining Access

Access to the system is achieved through the use of vulnerabilities detected during screening and discovery.

Ensuring Access Continuity

It is the stage in which authorization is increased and access is made permanent after penetration into the system.

Analysis & Reporting

This is the stage where all transactions, vulnerabilities detected and accessible sensitive data are analyzed and presented to the company.

 Types of Penetration Test

  • External Network Penetration Test
  • Local Area Penetration Test
  • Web Application Penetration Testing
  • Wireless Network Penetration Test
  • Mobile Application Penetration Testing
  • Social Engineering
  • DDOS Tests
Did You Like The Service? Let Us Call You!

Frequently Asked Questions About SCADA Penetration Test

Why Should I Have SCADA Penetration Test?2020-03-14T22:55:57+03:00

SCADA systems have switched from closed networks to open source solutions and TCP / IP enabled networks. This has caused security vulnerabilities. Not only can the data be damaged, but the control of the facilities can lead to production degradation, which can lead to physical damage and risks. Live systems are tested for effective management and mitigation of this risk. Damages on the site are detected or the areas where damage is foreseen.

With the tests performed by our experts, we offer you the opportunity to better understand security measures and weaknesses and prepare for future attacks.

We offer a professionally developed plan to prevent hazards and high-cost damage from security breaches and improve your security measures.

Where should the SCADA System be Used?2020-03-14T22:55:42+03:00

An SCADA system is a common industrial process automation system used to collect data from devices and sensors in remote sites and to transmit data from a central site for monitoring or control purposes.

SCADA is used in power generation plants (Nuclear, Hydroelectric), power lines, flow measuring equipment in pipelines, natural gas production and processing plants, and many factory systems.

What Tools are Used in SCADA Penetration Tests?2020-03-14T22:55:27+03:00

Here are some examples of tools used in the SCADA Penetration Test:

  • Nessus
  • Network Security Toolkit
  • SamuraiSTFU
  • SecurityOnion
  • Metasploit
  • PuTTy
  • NetCat/CryptCat
  • winAUTOPWN
  • Cain&Abel
  • nmap Scripts
  • smod
  • plsscan
  • WireShark
Go to Top