Brief Overview

HERCULES SecDevice is a security assessment tool for connected products, and ICS/SCADA products. It is designed to assist vendors in the testing phase of SSDLC (Secure Software Development Lifecycle) by saving time and labor through automation. Not only that, HERCULES SecDevice can also be used as a tool to enforce acceptance standard when purchasing externally sourced components.
HERCULES SecDevice uses intelligent fuzzing technique test to uncover unknown vulnerabilities, and other various testing methods including DoS, network and web vulnerability tests to check for known vulnerabilities in operating system, web applications, web pages, network protocols, and wireless connection within ICS/SCADA devices. Users can select test cases and policies prior to running a test. HERCULES SecDevice gathers data and packets sent and received during the test to allow tester to reproduce issues detected in the report, this includes the web pages affected, and vulnerability information. A PCAP file is also available for download for each failed test case to assist developers in recreating the issue.
Intelligent analysis of SecDevice assists testers by identifying vulnerabilities detected, risks involved, as well as solutions. The bilingual detailed reports produced after the test has been conducted can be used to assist an organization in complying with IEC 62443, and IEC 62351.
HERCULES SecDevice comes as a hybrid of hardware and software that utilizes web-based interface as a method of operation, the portable design of HERCULES SecDevice eliminates the need for any installations, users only need to have a simple setup consisting of a PC/laptop, SecDevice, and test targets, all connected using ethernet cables, to perform a test. Should the tester require the test target to be restarted, HERCULES SecDevice also comes with a power switch to restart the test target.