Enterprise OT/ICS Cybersecurity Training Platform

Defend the
Industrial World

The most comprehensive IACS cybersecurity academy — from PLC fundamentals to advanced OT SOC operations, IEC 62443 compliance, threat hunting, and critical infrastructure defense.

0 Learning Hours
0 Modules
0 Exam Questions
0 Career Tracks
Start Learning View Curriculum
Purdue Reference Model
L4/L5 Enterprise Network
DMZ / Demilitarized Zone
FW
HIS
JMP
L3 Site Operations
L2 Supervisory Control
L1 Basic Control
L0 Field Devices
Live Threat Simulation Active
Core Learning Domains

Everything OT Security

12 comprehensive domains covering the full spectrum of industrial cybersecurity — from field devices to boardroom governance.

OT/ICS Fundamentals

PLC, RTU, DCS, SCADA, HMI, SIS, Historians, Purdue Model, ISA-95, IT vs OT differences

24 Modules Beginner → Advanced

Industrial Protocols

Modbus, DNP3, OPC-UA, IEC 60870, PROFINET, EtherNet/IP, BACnet, S7, CIP, MQTT

15 Protocols Packet Analysis

OT Threat Landscape

Stuxnet, Triton, Industroyer, PIPEDREAM, Colonial Pipeline, nation-state attacks, ransomware

8 Case Studies MITRE ATT&CK ICS

IEC 62443 Full Track

All parts: 2-1, 2-4, 3-2, 3-3, 4-1, 4-2. Security levels, zones, conduits, SL-T, SL-A

6 Standards Audit Checklists

OT SOC Operations

Dragos, Claroty, Nozomi, Defender for IoT, SIEM, threat hunting, detection engineering

SOC Runbooks Use Cases

Risk Assessment

IEC 62443 risk methodology, NIST CSF, threat modeling, consequence analysis, risk registers

Templates Workshops

Secure OT Architecture

Defense-in-depth, DMZ, data diodes, zero trust, segmentation, secure remote access

Design Workshops Diagrams

Incident Response & Forensics

OT IR lifecycle, PLC forensics, malware containment, tabletop exercises, recovery planning

IR Playbooks Tabletops

Hands-On Labs

PLC/SCADA simulations, Wireshark captures, firewall config, SIEM integration, malware analysis

45 Labs Virtual Range

Governance & Compliance

NERC CIP, NIST 800-82, ISO 27001, CIS Controls, audit readiness, supply chain security

5 Frameworks Audit Templates

Certification Prep

GICSP, GRID, ICS410, ICS515 — mock exams, flashcards, scenario questions, exam simulations

4 Certifications Mock Exams

Vulnerability Management

Safe scanning, passive monitoring, patch validation, CVSS for OT, legacy systems, firmware

OT-Safe Methods CVE Analysis
Role-Based Tracks

Your Career Path

Structured learning journeys tailored to your role, experience level, and career goals in OT cybersecurity.

Beginner

OT Security Foundations

Zero to job-ready in OT cybersecurity. No prior ICS experience required.

ICS Basics IT vs OT Protocols 101 Security Fundamentals
120 hours · 8 weeks
Start Track →
Intermediate

OT SOC Analyst

Master OT monitoring, detection, alert triage, and incident response operations.

OT Monitoring Dragos/Claroty Threat Hunting SIEM/SOAR
200 hours · 12 weeks
Start Track →
Advanced

OT Security Architect

Design enterprise-grade secure OT architectures aligned with IEC 62443 and NIST.

IEC 62443 Zone Design Zero Trust OT Risk Modeling
280 hours · 16 weeks
Start Track →
Leadership

OT Security Manager / CISO

Governance, risk, compliance, team building, and executive communication for OT security leaders.

GRC NERC CIP Cyber Insurance Board Reporting
160 hours · 10 weeks
Start Track →
View All 14 Career Tracks
CASE STUDIES
STUXNET — First ICS-targeted cyberweapon · Siemens S7 PLCs · Iranian nuclear centrifuges · 2010 TRITON/TRISIS — Safety Instrumented System attack · Schneider Electric Triconex · Saudi petrochemical · 2017 INDUSTROYER — Ukraine power grid attack · IEC 60870-5-101/104 · 230,000 customers without power · 2016 COLONIAL PIPELINE — DarkSide ransomware · IT/OT convergence risk · 5,500 miles of pipeline shutdown · 2021 PIPEDREAM/INCONTROLLER — Most sophisticated ICS malware · Targets Schneider, Omron, OPC-UA · 2022 BLACKENERGY — Ukraine power grid · Spear phishing → HMI compromise → manual override disabled · 2015 LOCKERGOGA — Norsk Hydro ransomware · $75M damage · Aluminum production halted · 2019 STUXNET — First ICS-targeted cyberweapon · Siemens S7 PLCs · Iranian nuclear centrifuges · 2010 TRITON/TRISIS — Safety Instrumented System attack · Schneider Electric Triconex · Saudi petrochemical · 2017
Examination Engine

3,500+ Questions.
Zero Guesswork.

Every module includes MCQs, scenario-based questions, drag-and-drop, case studies, and MITRE ATT&CK-mapped questions. Timed mock exams simulate real GICSP conditions.

  • Beginner, Intermediate, Advanced difficulty levels
  • Detailed answer explanations with references
  • Randomized exam generation
  • GICSP certification-style mock exams
  • MITRE ATT&CK ICS technique-mapped questions
Launch Exam Engine
Intermediate OT Protocols Q.47 / 75
Which Modbus function code is used to write a single coil, and what is the primary security concern with this operation in an unprotected OT network?
A Function Code 01 — Read Coil Status; concern is data exfiltration
B Function Code 05 — Write Single Coil; concern is unauthorized actuation of physical processes
C Function Code 03 — Read Holding Registers; concern is configuration theft
D Function Code 16 — Write Multiple Registers; concern is firmware modification
Modbus FC05 writes a single coil (digital output). Without authentication, any device on the network can send FC05 commands to actuate physical outputs — valves, motors, breakers — creating direct physical process risk. This maps to MITRE ATT&CK ICS T0855 (Unauthorized Command Message).
AI-Powered Learning

Your AI Security Mentor

Intelligent assistants embedded throughout the platform to accelerate learning, generate assessments, and guide real-world decisions.

AI Tutor

Ask any OT security question. Get contextual explanations, protocol deep-dives, and concept clarifications in real time.

AI Exam Generator

Generate custom exams on any topic, difficulty, or standard. Scenario-based questions tailored to your industry sector.

AI Risk Assessor

Input your OT environment details. Get automated risk scoring, threat scenarios, and IEC 62443 gap analysis.

AI IR Advisor

Walk through incident scenarios. Get step-by-step response guidance, containment strategies, and recovery checklists.

AI Policy Generator

Generate OT security policies, procedures, and standards aligned with IEC 62443, NIST, and NERC CIP frameworks.

AI Architecture Reviewer

Submit your OT network design. Get automated security review against IEC 62443 zone/conduit requirements.

Standards Alignment

Built on Industry Standards

IEC 62443 Full Series Coverage
NIST 800-82 ICS Security Guide
NIST CSF Cybersecurity Framework
NERC CIP Critical Infrastructure
MITRE ATT&CK ICS Threat Intelligence
ISO 27001 ISMS Framework
CIS Controls v8 Mapped
GICSP / GRID Certification Prep
ISA/IEC 62443 SDLC Requirements
IEC 60870 Protocol Standards
Industry Coverage

Real-World Industrial Environments

Power Generation
🛢️
Oil & Gas
🏭
Manufacturing
💧
Water Treatment
☀️
Renewable Energy
⛏️
Mining
🏙️
Smart Infrastructure
🚂
Transportation
💊
Pharmaceuticals
🔬
Chemical Plants