SonicALERT
Search

Sonicwall Signatures


Go to All Categories list.
Go to All Applications list.

Category: SCADA-APPS

SCADA-APPS Category Description

This SonicWALL IPS signature category consists of a group of signatures that can detect and prevent legitimate traffic of SCADA systems

SCADA stands for "Supervisory Control And Data Acquisition". It generally refers to industrial control systems: computer systems that monitor and control industrial, infrastructure, or facility-based processes.

  Prosys OPC -- Protocol Command 1
  Prosys OPC -- Protocol Command 2
  Prosys OPC -- Protocol Command 3
  Synchrophasor Protocol (IEEE C37.118) -- TCP Command Frame
  Synchrophasor Protocol (IEEE C37.118) -- UDP Command Frame
  IEC 60870 -- Protocol Command IEC 104 2
  IEC 60870 -- Protocol Command IEC 101
  ICCP -- Client Request (COTP)
  ICCP -- Client Request (Association)
  ICCP -- Client Request (MMS Write)
  ICCP -- Server Response (Invalid OSI-SSEL)
  ICCP -- Server Response (Invalid OSI-PSEL)
  BACnet -- UDP Activity
  CODESYS -- UDP Activity 1
  CODESYS -- UDP Activity 2
  CODESYS -- UDP Activity 3
  CODESYS -- TCP Activity 1
  CODESYS -- TCP Activity 2
  CODESYS -- TCP Activity 3
  EtherNet/IP -- TCP Activity (Send RR Data)
  EtherNet/IP -- Registration
  EtherNet/IP -- TCP Activity (Send Unit Data)
  SAIA ETHER S-BUS -- UDP Activity
  ETHERSIO -- UDP Activity
  OMRON-FINS -- UDP Activity 1
  OMRON-FINS -- UDP Activity 2
  HART-IP -- UDP Activity 1
  HART-IP -- UDP Activity 2
  IEC 60870 -- Protocol Command IEC 104 1
  PC_WORX -- TCP Activity
  ISO-TSAP -- TCP Activity 1
  ISO-TSAP -- TCP Activity 2
  ISO-TSAP -- TCP Activity 3
  S7comm -- TCP Activity (Setup)
  S7comm -- TCP Activity (Data)
  Advantech ICS -- Server Response (FTP)
  Beckhoff ICS -- TCP Activity
  Hirschmann ICS -- HTTPS Activity
  Automationdirect ICS -- TCP Activity
  Moxa ICS -- HTTP Activity
  Moxa ICS -- TCP Activity
  Moxa ICS -- HTTPS Activity
  Phoenix ICS -- HTTP Activity 1
  Phoenix ICS -- HTTP Activity 2
  Phoenix ICS -- HTTP Activity 3
  Siemens ICS -- TCP Activity (RUGGEDCOM RS910) 1
  Siemens ICS -- TCP Activity (RUGGEDCOM RS910) 2
  Siemens ICS -- HTTPS Activity (RUGGEDCOM RS910)
  Siemens ICS -- UDP Activity (SIMATIC S7-1200)
  Westermo ICS -- TCP Activity 2
  Westermo ICS -- TCP Activity 3
  Westermo ICS -- TCP Activity 4
  NetBurner ICS -- TCP Activity
  Inhandnetworks ICS -- HTTP Activity 1
  Inhandnetworks ICS -- HTTP Activity 2
  Inhandnetworks ICS -- HTTP Activity 3
  Westermo ICS -- TCP Activity 1
  Barix ICS -- TCP Activity


Relevant Information