Thank you for your interest in our newsletters. You will receive an email shortly to confirm your subscription.
Chris Day, Security Consultant
2 mins read
The traditional approach to this problem involves conducting network scans and manual inspections of the sites to identify the existence of assets. This can be a resource-intensive task and, for sensitive or heavily-loaded networks, can potentially cause disruption to normal work activities
In many situations the threat of disruption is unacceptable and an alternative means of mapping networks is required. Therefore, a passive solution that does not require interaction with networks or systems is needed. This requirement is especially true for Industrial Control Systems (ICS) where network scanning may cause devices to become unresponsive or reset.
With this in mind, Project Vision was created with the aim of producing an un-invasive, safe system-mapping solution. To produce meaningful output formats for clients, alternate sources of information and intelligent ways of collating information were investigated. An example development output is provided below:
Fig. 1 — Project Vision demonstrating visualization of network hosts, detected ports and traffic activity to internal and external addresses based on multiple information sources.
Project Vision is being developed to make use of system diagrams, passive network captures, active network scans where permissible and other, novel information sources. The concept is viable and development is now continuing to produce additional input, information processing and output modules to expand the capabilities of Project Vision. Although Project Vision is primarily aimed at ICS, it can also be employed for enterprise networks and adapted to suit non-IP-based communication links as required.