Collaboration Announcement

After having achieved a good collaboration between Secudea, Onrix and Asvalis, it became time to expand the available services.  As such, we started looking for a new member to join.  We are glad to announce that Corelan Consulting BVBA, founded by Peter van Eeckhoutte will be joining the team.

The joint offering focuses, among other things, on the security of industrial environments (ICS / Scada / …) in all its facets, helping companies with their of IT (Security) Governance (processes / policies & procedures), the execution of assessments (technical / procedural) and creating & rolling out a Cyber Security strategy adapted to the specific company needs.

The foundation of this cooperation is based on strong security principles, including mutual confidentiality agreements, information security and need-to-know information sharing.


More information can be found at:

Corelan Consulting

CS3sthlm – Operator Jail breakouts

In a few I’ll be giving a talk together with Dieter Sarrazyn (  on the hidden dangers of Operator Jail breakouts, how to test these issues, and how to prevent them.  The talk will be provided at the CS3sthlm conference in Sweden.

A brief summary of what to expect:

Operator stations are today one of the first systems/stations to interact with a distributed control system (DCS) or other industrial control systems. These operator stations often have some protection built in to restrict what the operator can do within the SCADA software and/or on the operating system itself.

Within this presentation, some of the most (easily) discovered ways are shown/explained and how these can be (ab)used to gain a further foothold within the environment.

The audience will learn more on the shortcomings of most of the operator jail solutions and what could be done to step up this game to secure this properly. Key takeaways obtained by the audience through this presentation is that you cannot trust operator jails in the thought that it properly protects attackers from gaining access to the operating system itself and thus potentially exploiting the whole DCS environment.


Make sure to drop by if you have the chance!