Exploit for Unprotected Alternate Channel in Rockwellautomation Allen-Bradley Stratix 5200 Firmware

🛡️ qub-network-security-cve-2023-20198 Analysis, detection, and mitigation of CVE-2023-20198 exploitation in Cisco IOS XE 📘 Queen’s University Belfast – CSC3064 Network Security Assessment 📋 Assessment Overview This project involves analyzing PCAP files provided by Fox-IT to: – Identify Indicators of Compromise (IOCs) – Demonstrate exploitation using custom-crafted packets – Apply Snort IDS/IPS and iptables-based network security countermeasures 📁 Repository Structure Slides/ – Presentation slides used in the video submission IOC Summary/ – Detailed breakdown of all network-level Indicators of Compromise Snort Rules/ – Alert and drop rules implemented in Snort, with visual proof Assessment PDF/ – Official CSC3064 assessment instructions from QUB Video/ – Demo presentation video (uploaded separately and linked below) Final IOC Summary | IOC Type | IOC Observed | What It Confirms | |——————-|—————————————————————————|———————————————————-| | IP Patterns | Attacker: 10.10.1.1, 10.10.0.1Victims: 10.10.1.69, 10.10.1.42 | Attack source and target devices identified | | Headers | User-Agent: Mozilla/5.0…Priv-Level: 15 | Browser impersonation and privilege escalation | | Protocols | TCP, HTTP (port 80),…Read More