Hi, can somebody tell if Qualys VM can detect vulnerabilities in SCADA networks ?
We can scan anything with an IP stack. Given that these days most new age SCADA devices are an embedded version of a common OS (Linux, Windows) it is possible we could authenticated, but given the likely limited command set and the internal differences I would not expect authenticated scanning to work well or return valid results. There is increased risk with authenticated scanning in my opinion in this situation, so I would stick with just remote scanning.
Thanks for this article and I would like to clarify that if there is not much difference for scanning OT from IT, why not directly scan the production controlled system instead? Is there any certification from Qualys that you could refer to me regarding it can be use for ICS/SCADA as a Vulnerability Assessment tool and the system will not hang or crash?
Use caution scanning these systems. They are notoriously sensitive and I have personally wiped out the configuration of devices with a simple port enumeration type of scan.
I would suggest working with your TAM and try the passive scanner out. Might work very well.
Retrieving data ...