SCADA focus with Labshock. Easy & Practical.

Introduction

SCADA (Supervisory Control and Data Acquisition) systems and PLCs (Programmable Logic Controllers) are fundamental components of industrial automation. SCADA provides the interface for operators to monitor and control processes, while PLCs execute the actual control logic at the hardware level.

SCADA interacts with PLCs by reading data (temperature, pressure) and sending commands (start/stop) through communication protocols like Modbus or OPC UA. This real-time interaction allows operators to visualize the state of the system and make informed decisions.

For OT SIEM, monitoring SCADA-PLC communication is essential. It helps detect unusual activities, such as unauthorized tag changes or abnormal commands, which may indicate cyberattacks or equipment malfunctions or user not allowed manipulations.

This guide fully depends and based on Labshock, feel free to use it:

Main Article describing the Labshock can be found here.

?? If for some reasons you can't/don't want to run it by yourself, just ping me!

?? Creating Objects in SCADA

create simple interface

In this section, we'll create a simple SCADA object in Labshock. The object will represent a parameter (e.g., "Pressure") and display its corresponding value from a PLC tag. This sets up the visual interface operators use to monitor industrial processes.

Step 0: Install one click Labshock

• check GitHub page for details
• check Wiki for more details

Step 1: Start Labshock

• launch Labshock on your local machine or server
• ensure all services (SCADA, PLC, EWS) are running properly

docker ps
docker stats        

Step 2: Login to Labshock EWS Desktop

• open a browser and navigate to Labshock's Engineering Workstation (EWS) URL: https://localhost:5911
• log in using your Labshock credentials: engineer by default
• once logged in, you’ll see the Labshock Desktop interface
• double click SCADA link

Step 3: Switch to the Editor

• locate and open the SCADA editor in the Labshock EWS interface
• the editor allows you to create and customize SCADA objects for your project

Step 4: Add a Text Field for "Pressure"

• in the SCADA editor, select the option to add a text field
• adjust the font color or position as needed for better visibility
• place the text field in the desired location on the SCADA layout
• edit the text field's properties to display the label "Pressure"

Step 5: Add an "Output Value" Field

• add a dynamic value field to display the output value of the pressure parameter from the PLC
• place the output value field near the "Pressure" text field for visual alignment
• leave the value unlinked for now - we’ll connect it to a PLC tag in the next step

At this stage, you’ve successfully created a basic SCADA interface with a labeled "Pressure" text field and an output value placeholder. These objects will become functional once linked to PLC tags in the next section.

?? Linking SCADA Objects to PLC Tags

connect & get data

In this section, we’ll link the SCADA objects you created to a PLC tag, allowing the "Pressure" output value to dynamically display data from the PLC. This connection is essential for real-time monitoring in industrial systems.

Step 1: Configure the Output Value Properties

• select the Output Value field you added in the previous section
• open the Properties menu

Step 2: Fill Output settings

• fill the value to initial value "0"
• fill Tag plc to "pump2_pressure - 23"
• fill Unit to "kPa"

Step 3: Return to the Home Screen

• save your changes in the SCADA editor
• navigate back to the Home mode of the Labshock SCADA system

Step 4: Check created Object

• verify that the object you created is now displaying a value retrieved from the PLC

?? Check and compare value on PLC

link & check with origin tag

To ensure that value is correct and SCADA displays right value let's recheck it on PLC.

Step 1: Open the PLC Dashboard

• locate and open the PLC Dashboard in the Labshock EWS interface
• log in with your OpenPLC credentials: openplc by default

Step 2: Verify the Tag Value

• go to the Monitoring Page to view real-time PLC tag values
• locate the tag "pump2_pressure" on the Monitoring Page
• check the current value of the tag and ensure it matches the data displayed on the SCADA interface

At this point, your SCADA object is fully linked to the PLC tag, and you can see live data updates on the SCADA interface. In the next section, we’ll test the linkage further by simulating changes in the PLC tag value and observing the SCADA system's response.

?? Why This Process Matters for OT SIEM

why you need to know this

The integration between SCADA systems and PLCs plays a critical role in ensuring effective monitoring and control of industrial environments. For OT SIEM, this integration is key for several reasons:

• Visibility: SCADA systems generate logs when they interact with PLCs, such as when a critical tag value changes, alarms and others. These logs provide insight into process activity.
• Anomaly Detection: Analyzing SCADA-PLC communication helps detect deviations from normal operations, such as unexpected changes in equipment status.
• Incident Response: OT SIEM systems can alert operators to potential issues, enabling faster resolution.

?? Conclusion

In this article, we walked through the process of creating a SCADA object, linking it to a PLC tag, and testing the communication between SCADA and PLC. By setting up and configuring objects in Labshock, you now have a working SCADA interface that displays real-time data from the PLC, which is essential for industrial monitoring and control systems.

Understanding this process is crucial for OT SIEM, as it allows for better visibility into system performance and the detection of any anomalies that may indicate potential issues or security threats. By leveraging SCADA-PLC integration, organizations can ensure more reliable, secure, and efficient operations.

With this foundation, you can expand your SCADA system to include more complex interactions, such as controlling devices based on PLC tags and monitoring multiple tags in real time. This is a stepping stone to building robust industrial control systems that are fully integrated with OT SIEM for enhanced security and operational insight.

Next, we’ll explore more advanced SCADA and PLC configurations in upcoming articles, so stay tuned!

You are at Level 4 Indutrial Tree - SCADA Focus 1/5 Skill

Don't forget to check your main Leveling Guide

And put ?? comments or ?? likes, it helps a lot to get your feedback!

Yours, Zakhar

?? our Discord Server ??

?? please put Stars here ??