ICS Security Products

Many discussion threads in ICS security internet forums are people asking for product recommendations. There is normally good response to this type of posts, but they all exist in little silos, dotted around the interent which makes them hard to find.

This project is an attempt to solve the problem of knowing where to go to find out about useful products in the ICS security space. It is inspired by @Ka0sKl0wN's list of ICS Security study resources at https://github.com/Ka0sKl0wN/ICS-Security-Study-Resources

The purpose of this project is to list ICS security products as a community resource. Please contribute if you have something useful to add.

The lists of products are not (yet) exhaustive. It is vendor-neutral. The key requirements for a product being on a list is that ICS/OT defenders find it useful for securing their environments. See the full inclusion criteria.

Product Categories

Identify

• Asset Management
• Asset Discovery and Profiling
• Governance
• Risk Management

Protect

• Diodes & Unidirectional Security Gateways
• Endpoint Protection
• Identity and Access Management
• Firewalls - Industrial
• Firewalls - Next Generation
• Patch Management
• Physical Port Blockers
• Remote Access
• SBOM

Detect

• Logging and Monitoring
• Network Anomaly Detection
• Search Engines
• Serial Connection Monitoring
• Testing
• USB Sheep-Dip Stations
• Vulnerability Scanning

Respond

• Incident Response

Recover

None yet

Other Sources

The following sources may also be useful for finding OT security products:

• ANSSI Certified Products List (France)
• Common Criteria Portal
• Exida Security Automation Equipment List
• German IT Security Certificates (Germany)
• OC-CCN Certified Products List (Spain)
• OCSI Certified Products List (Italy)
• ISA Secure Certified Products
• TRTEST Test and Evaluation (Turkey)
• TUV Rhienland Certipedia
• UK NCSC Certified Products & Services (UK)
• UL Certified Products List
• Gartner OT Security Reviews and Ratings

Credits

The credits page lists the awesome people who have contributed to this project.