This is a collection of PCAPs (or additional notes where PCAPs are still needed) for ICS/SCADA utilities and protocols.
First, make sure that your git is updated. Second, you'll want to install GIT Large File Storage (LFS).
- Go to https://git-lfs.github.com/
- Download the archive
- run the installer.
- git lfs clone https://github.com/automayt/ICS-pcap.git
Credit for these go out to
- digitalbond
- 4sics
- netresec (http://www.netresec.com/?page=PCAP4SICS)
- https://scadahacker.com
- wireshark sample captures (https://wiki.wireshark.org/SampleCaptures)
- shodan.io
- http://kargs.net/captures/
- Oak Ridge Datasets
- Many others! (If your stuff is here and I've forgotten you, please feel free to reach out!)
Feel free to submit pull requests with more PCAPs or info. If you see a mistake or would rather that I upload the PCAPs for you, create an issue and I'll do it for you.
If any of these are categorized incorrectly, please let me know. This is very possible due to mild caveats between similar protocols or variations of protocols.