OT Security Tools
Operational technology security tools for protecting industrial control systems, SCADA networks, and critical infrastructure.
Browse 204 ot security tools
FEATURED
USE CASES
Ultimate Internet of Things/Industrial Control Systems reconnaissance tool powered by Shodan.
Simple perl script for making Modbus transactions from the command line.
Passively maps and visually displays ICS/SCADA network topology for network security
Python exploitation tool for gaining root access to Sixnet RTUs in SCADA networks by exploiting application-level vulnerabilities.
PLC-side fuzzing tool for uncovering vulnerabilities in ICS control applications.
A customized Kali Linux distribution for ICS/SCADA pentesting professionals
A tool for scanning networks, enumerating Siemens PLCs, and gathering detailed information about them.
Repository of pcap traces for evaluating Network Intrusion Detection Systems in HVAC systems.
Developing APIs to access memory on industrial control system devices.
A Digital Bond research project to enumerate ICS applications and devices
A collection of PCAPs for ICS/SCADA utilities and protocols with the option for users to contribute.
Repository of TRISIS/TRITON/HatMan malware samples and decompiled sources targeting ICS Triconex SIS controllers.
OT Security Specializations
204 tools across 5 specializations · 17 free, 187 commercial
Industrial Control System Security
Industrial Control System (ICS) security solutions for protecting programmable logic controllers (PLCs), distributed control systems, and industrial automation.
Operational Technology Asset Discovery
OT asset discovery tools for identifying and inventorying industrial control systems, IoT devices, and operational technology assets.
Operational Technology Network Segmentation
OT network segmentation tools for isolating operational technology networks from IT networks and external threats.
OT Security Tools FAQ
Common questions about OT Security tools, selection guides, pricing, and comparisons.
OT environments run industrial protocols (Modbus, DNP3, OPC-UA) that IT security tools do not understand. Active scanning can crash safety-critical PLCs and SCADA systems. OT networks require passive monitoring that does not inject packets, asset discovery that understands industrial device types, and security policies that prioritize safety and availability over confidentiality. IT tools designed for TCP/IP traffic will miss OT-specific threats and potentially cause outages.
The Purdue Model defines network segmentation layers for industrial environments, from Level 0 (physical processes and sensors) through Level 5 (enterprise network). Proper segmentation according to this model prevents attackers who compromise the IT network from reaching safety-critical industrial systems. OT security tools help enforce and monitor these boundaries.
OT asset discovery tools use passive network monitoring to identify devices by analyzing industrial protocol traffic without sending any packets. They parse protocols like Modbus, EtherNet/IP, and Profinet to identify device types, firmware versions, and communication patterns. Some also integrate with historian databases and engineering workstations to enrich asset inventories.
