Practical example of fuzzing OPC UA applications

In an article published in May 2018, Kaspersky ICS-CERT described their approaches to searching for vulnerabilities in industrial systems based on the OPC UA protocol.

Two years later, the issue of ensuring the security of industrial systems based on that protocol is as relevant as ever. Large vendors of industrial software continue to develop and support their products based on implementations of the protocol stack written in C and C++ – languages that have memory use security issues.

Read more…
Source: Kaspersky