Lab: 2 CPE

In this advanced level module, get hands on experience with the BACnet protocol in a simulated server room cooling system to understand how to attack and harden one of the most common building automation system (BAS) protocols in use. After completing this chapter you will be able to

Explore building automation systems in Shodan

Run nmap scripts to enumerate BACnet devices

Set up a rogue BACnet master to read process data and send commands

Fuzz BACnet servers to check for vulnerabilities

Write Suricata/Snort content rules to detect suspicious BACnet activity

Set up a basic BACnet honeypot to study attacker behavior

The Fortiphyd Virtual Training Grounds series equips you with the practical experience needed to secure ICS networks. Practice launching real attacks, see their physical consequences, and learn how to defend against them all in realistic 3D simulated plants.