Online training

Finally! After receiving several demands, and considering the inability to participate to cybersecurity events with the COVID-19 crisis, I managed to transform my 2-day “Pentesting Industrial Control Systems” into an elearning!

What is included in this elearning?

It is exactly the same content I delivered at most conferences, including Black Hat Asia last year. It is meant to be a 2-day training, but you can go at yourn own pace since you’ll have access to all content for 30 days.

By registering for this training, you’ll get 30 days access to the online platform, including videos, the lab and CTF environments. Of course, you can download and keep the slides and the VMs after the 30-day delay.

Video presentation of the training

The course

You will get access to the 300+ slides covering all topics from the training:

  • Introduction to ICS
  • Pentesting basics & Windows security
  • ICS protocols
  • Programming PLCs
  • Pentesting ICS
  • Introduction to safety for security pros
  • Capture The Flag

For each of these topics, there are also video recordings of the course content, so it’s like you’re attending the live training:

The Labs

In addition to the video content, this training is heavily hands-on. As an attendee, you’ll be able to download 3 virtual machines specifically configured for the exercises.

All the exercises are also covered in video:

Exercise: Programming a PLC

Exercice: Packet capture analysis


To end the training, the Capture The Flag is always the most fun!

You’ll connect your VM to a VPN, and will have to compromise a Windows corporate environment, pivot to the ICS network and hack it in order to capture the flag!

All of this is hosted in the cloud, and you’ll be able to follow your progress with an HTML5 web simulation:

Target audience

This training aims at bridging the gap between IT and ICS: it is designed to allow OT professionals to understand the security challenges of ICS with an offensive mindset, while allowing IT professionals to discover the world of Industrial Control Systems and adapt their cybersecurity knowledge to this new world.

The training is heavily hands-on. While no ICS or pentest knowledge is required, it is recommended for attendees to have basic networking and computers skills (using virtual machines, the command line, understanding TCP/IP…).

Attendees need to bring a laptop with Virtualbox, capable of running 64-bits virtual machines (8GB RAM & 50GB free disk space recommended).

This training is not suited for people that already have a strong ICS cybersecurity technical experience.

Pricing and registration

The price for 1-month access to the elearning platform is 1200€ VAT excluded for each participant.

The following Paypal link allow you to order the training including VAT. If you’re a international company that do not need to pay French VAT, please get in touch by mail.

Pay for the training using a credit card or Paypal

Gets you 1-month subscription to the online elearning platform. The registration will be processed manually (by me!) so please expect a delay between payment and account creation!


You can also pay by wire transfer, just get in touch at

If you are a company, and would like to buy access for several employees, please get in touch for volume discount!

Please do not share access between users, we can work out a financially wise solution together 🙂

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: