Writing
Short technical write-ups on smart-grid security, anomaly detection, and reproducible research practice.
System Profiling
🔸Before any OT/ICS risk assessment, profile the system. 🔸System profiling = a deliberate inventory of components, connections, and weak points of the complete System under Consideration (SuC) so your risk…
Brief History of ICS-Tailored Attacks
Download the PDF
MITRE ATT&CK
The MITRE ATT&CK framework, created in 2013, is a detailed catalog of how attackers operate and common attack patterns. It maps real-world TTPs (Tactics (the “why”), Techniques (the “how”), and…
Common OT Security Misconceptions
Download the PDF
IEC 62443
DDoS UDP Flood Attack (Layer 4 Attack)
UDP flood attacks exploit the lack of connection control in the User Datagram Protocol. Unlike TCP, UDP doesn’t manage sessions, track connections, or limit traffic. Attackers take advantage by sending…
CSV
Relationships are like CSVs—one wrong delimiter, and it all breaks. CSV stands for Comma-Separated Values. It’s a plain text format that stores tables. Each line holds one record, and fields…
Granularity
In IT network traffic, granularity refers to the level of detail at which network data is capturered or monitored. High Granularity (packet-level):Tracks network traffic at the packet level. Shows details for…
DDoS TCP SYN Flood Attack (Layer 4 Attack)
My TCP relationship status? It’s complicated, SYN but no ACK!! TCP SYN Flood Attack exploits the fundamental weakness in TCP’s three-way handshake mechanism. During normal TCP connection establishment, a client…