Today I got a idea as we all know that IIS 7.5 have authentication bypass vulnerability and when you will search shodanhq.com you will find many SCADA systems have IIS 7.5 installed but wee will use shortcut see enter this URI(Url) in your browser:
You will find many SCADA systems with IIS 7.5 installed now I hope you know about proxy bouncing now after doing proxy bouncing connect to the SCADA system(you can choose anyone you want to hack).
Now by using authentication bypass vulnerability in IIS 7.5 you can run any php script like shell script and you can get admin privilege or you can execute your own malicios .php,.cs,.vb script to get access or execute your own scada virus.
I hope you all will like this tut
Note: This tut is not completely based on SCADA hacking.In this tut I'm trying to say that by using IIS 7.5 authentication bypass vulnerability you can execute a malicious script to get you admin privilege or by using script to download/execute you bot/virus to completely Hack scada system
Note: before writing SCADA virus you should know about and have do some experiment with it(at home).I'm also trying to know about PLC(s) and one thing more that some viruses can be executed internally I mean that you cannot execute from outside.In SCADA you to sometimes exploit it Internally
Last edited by H@CK3R_ADI; 07-12-2012 at 08:29 AM.