Unveiling the Secrets of Codesys V3: ZeroDays, Forensic Artifacts and More
RSA Conference 2024 · Track Session
This talk, presented by Ori Perez, Maayan, and Vladimir from Microsoft, delves into the intricate world of **Codesys V3**, a widely adopted Software Development Kit (SDK) for industrial control systems (ICS). The researchers share their extensive work on reverse engineering Codesys V3 compiled binaries and firmware, driven by a critical need to establish robust forensic methodologies for Operational Technology (OT) environments. Their investigation not only uncovers the internal workings of Codesys-based PLCs but also exposes multiple zero-day vulnerabilities, including remote code execution (RCE) flaws, with a live demonstration of an exploit.