Omar Morando

Hey, I'm Omar! I'm a consultant that provides offensive security assessments & penetration testing services for a variety of industries. I've 20+ years of experience in OT/ICS Industrial Automation domain (SCADA, PLC, remote I/O, fieldbus) with expertise in ISA/IEC 62443 and in Automotive with ISO/SAE 21434 standards.

Basically, I hack into companies to show the techniques adversaries use!

How can I help you? Feel free to drop me an email.
Use this PGP key for confidential communication.

SCADAsploit Framework

I’m the developer of “SCADAsploit”, a framework which includes dozens of auxiliary and exploits modules dedicated to OT systems, in particular PLC and SCADA mainly present on the Italian market. It’s widely used during sessions of vulnerability analysis and penetration testing. The database of modules allows to simplify the different phases of the pentest, such as network scanning, SCADA/PLC information gathering, upload/download application, read/write memory data and executing attacks like MitM, flooding, start/stop PLC, DoS and more.

Training & Consulting

Cyber security trainer & consultant in the IT, OT and Automotive fields, with expertise in ISA/IEC 62443 and in Automotive ISO/SAE 21434 standards. I can help you evaluate the cyber risks and how to protect your infrastructure implementing a cybersecurity process from design to operations, especially in OT/ICS domain.

Coding

Software developer for mobile robots, embedded systems, IoT and real-time applications. Languages: C/C++, Python, C#, Go. Frameworks: Qt/QML, PyQt, ROS, RTOS & multithreading.