Irongate: Technical Deep Dive

 
Published on June 12, 2016
Channel: S4 Events
Source: Youtube

Rob Caldwell of FireEye provided the first technical briefing of the ICS malware known as IronGate at S4xEurope on 9 June 2016. Here are some highlights of the video: 3:56 Why IRONGATE is interesting from a technical perspective. 6:08 Is the industry numb to this type of release due to naming, hype, process? 8:20 A flow chart showing the major steps of IRONGATE. 14:20 The actual DLL replacement code. 16:20 Record and replay code. 19:25 Comparison and contrast with Stuxnet. The last ten minutes is Q&A.