Hacking ético para la identificación de vulnerabilidades en dispositivos PLC conectados a una red local utilizando Raspberry Pi

Abstract

Programmable logic controllers (PLCs) play a crucial role in the operation of critical infrastructure, such as water treatment plants, energy systems, and industrial processes. However, their increasing integration into corporate networks and the internet has significantly increased their exposure to cyberthreats. Originally designed to prioritize process availability and control, many PLCs lack robust protections against cyberattacks. This vulnerability is exacerbated by insecure default configurations and limited cybersecurity training for the technical personnel responsible for their maintenance. As a result, attackers can exploit security gaps to disrupt operations, gain unauthorized access, steal confidential information, or even cause physical damage to the infrastructure. To address these risks, an ethical hacking-based methodology was proposed to assess and strengthen PLC security. This approach included setting up a secure local network with a Raspberry Pi, used as the system administrator, and running penetration tests using specialized cybersecurity tools, such as Kali Linux. These tests were conducted in a controlled and simulated environment, allowing critical vulnerabilities to be identified without compromising real systems. Based on the results obtained, specific corrective measures were implemented, such as strengthening security configurations and eliminating unauthorized access. Additionally, practical recommendations aligned with international cybersecurity standards, such as IEC 62443, were developed to ensure the long-term protection of industrial control systems. Ultimately, securing PLCs not only safeguards industrial operations but also preserves the stability and security of the communities that rely on these critical infrastructures.