Labshock v1.4 Drops: Secure Your PLCs and Catch Every Log - Ready to Dive In?
Zakhar Bernhardt
ICS/OT Cybersecurity Expert | Labshock & Patented NVIDIA AI IDS & 1st OT SIEM Creator | 10k+ Followers | Pentesting & SOC
?? Introduction
This article is part of Level 3 in the OT SIEM Leveling Guide 1-60: Lab Config. Today, we’re talking about Labshock v1.4 - Tidal Collector Release.
It’s a big step up from v1.3, where I added the Network Swiftness IDS Service. Now, you’ve got new stuff like better security for OpenPLC, event logging, and a cool message Collector service.
This guide will show you what’s new, how to set it up, and how it helps your ICS lab. Want a quick peek? Check the demo - it’s less than 2 minutes:
?? What’s New in Labshock v1.4
collect them all
Labshock v1.4 introduces Tidal Collector, a new service to grab and process logs from your ICS lab.
Features:
Use Cases:
?? OpenPLC Security Enhancement
who said monitoring and securing PLCs is impossible?
Not with Labshock! v1.4 brings serious security improvements:
1. Security Section in OpenPLC: Dedicated settings for security configurations.
2. Security Event Logging: OpenPLC now logs logins, errors, and changes. Every move gets recorded.
3. Syslog Support: Send logs to a central Syslog Server for easier monitoring.
Who said it’s impossible to monitor and secure PLCs? It’s possible, and don’t believe that enabling logging is too hard. You can send any vendor/integrator to me - I’ll explain how to do it!
?? Log Collection - Step-by-Step
ready to see Labshock v1.4 in action?
Here’s how to collect logs and analyze traffic with Labshock v1.4:
1. Enable Syslog Sending in OpenPLC: set syslog sever's IP and Port
2. Generate Events: login, start/stop PLC
3. Check Logs: in Tidal Collector you can see messages from PLC
4. Check Traffic: in Network Swiftness you can see syslog packets
?? Conclusion
Labshock v1.4 - Tidal Collector Release is out, and it’s awesome! OpenPLC is tougher now, you can log events, and ?? Tidal Collector grabs all your ICS logs. It’s everything you need to keep an eye on your setup and make it secure.
Seriously, it’s easy to use and does the job.
It’s easy to use and does the job. Try it out, check the GitHub repo, and if you like it, maybe drop a ?? https://lnkd.in/daX_Tepw
Want updates & support? Join the Discord ?? https://lnkd.in/dwdMR9K6
And hey, if you enjoy Labshock and want me to keep pushing updates - you can buy me a coffee ?? every cup helps ??
Let me know what you think - comments or likes mean a lot.
Take care, Zakhar
PTDF-DAAD Scholar|PhD Research Assistant at Universit?t Passau|
1 周This's nice Zakhar Bernhardt Security is major concern in Scada system as ICS networks continue to grow. Wonderful setup!!!
CEO of GBCH with expertise in cybersecurity and leadership
1 周Congrats Zakhar! ??
Founder and CEO at Autonomy
1 周Zakhar Bernhardt Do you plan to upgrade the OpenPLC Editor in your Labshock environment to v4? We've just released 4.0.1-beta with a ton of bugfixes and new features. I bet you're gonna enjoy the new Structured Text editor particularly :)
Great dad | Inspired Risk Management and Security | Cybersecurity | AI Governance & Security | Data Science & Analytics My posts and comments are my personal views and perspectives but not those of my employer
1 周Looks very promising for security and operation teams
+17K Followers ?? | Cybersecurity Analyst | Blue Team Specialist | Threat Hunting | Malware Researcher and Analyst ?? | Community Manager @SOC4M
1 周Thank you for sharing Zakhar Bernhardt