ArmorInnovate.OS · v0.1

The operating system for OT defenders.

One disciplined platform for IEC 62443 certification, ICS / SCADA pentesting, and live OT vulnerability intelligence. Built by ICS engineers for the people keeping plants running.

Start Certification Open a Lab

IEC 62443: Aligned
NIST 800-82: r3
CISA Feed: Live

armor@ot · session 0x4f1a

STREAMING

OT-MONIEC 62443-3-3 · SL2 · zone:enterprise→cell0 ln

Capability Set

Four pillars. One operating system.

Most OT security tools cover one slice — a course platform, a vuln feed, a pentest distro. ArmorInnovate is the integrated workbench: lessons, labs, certification, and intelligence cross-linked so you can move from an advisory to a hardening checklist to a hands-on lab in three clicks.

08 PARTS · 32 LESSONS

Knowledge Base

IEC 62443, NIST SP 800-82, ISA/IEC standards — distilled into modular, MDX lessons with terminal-style code blocks and verified citations.

Open

12 SCENARIOS

Lab Environment

Sandboxed PLC simulators (Modbus, S7comm, EtherNet/IP). Run nmap NSE, mbtget, and packet captures on live targets — never your client’s plant.

Open

4 + 1 TRACKS

Certification Path

Four IEC 62443 specialist tracks (Foundations, Risk Assessment, Design, Maintenance) feeding the Cybersecurity Expert capstone.

Open

LIVE FEED

Vulnerability Intelligence

Live CISA ICS-CERT feed, asset matching against your inventory, and severity prioritised by SL impact — not just CVSS.

Open

Live · ICS-CERT Stream

Latest OT advisories

Full Feed

AdvisoryVendorSummaryCVSSAge

ICSA-24-009-01Rockwell AutomationCompactLogix unauth firmware overwrite9.82h ICSA-24-191-04RockwellFactoryTalk View ME RCE8.66h ICSA-23-353-08SiemensS7-1500 authentication bypass8.61d ICSA-24-046-09Schneider ElectricModicon M340 buffer overflow7.52d ICSA-23-336-03Mitsubishi ElectricMELSEC iQ-R denial of service5.33d

IEC 62443 Certification

Four specialists. One Cybersecurity Expert.

Aligned with the ISA/IEC 62443 Cybersecurity Specialist program. Each specialist track combines theory (referenced to IEC parts), a written exam at 75% pass, and a hands-on lab. Complete all four to qualify for the Cybersecurity Expert capstone — a 40-hour multi-stage assessment.

Stage 0130h

Fundamentals

AI-CSP-FND

IEC parts: 62443-1-1, 2-1

View track

Stage 0235h

Risk Assessment

AI-CSP-RA

IEC parts: 62443-3-2

View track

Stage 0340h

Design

AI-CSP-DSN

IEC parts: 62443-3-3, 4-2

View track

Stage 0430h

Maintenance

AI-CSP-MNT

IEC parts: 62443-2-3, 2-4

View track

Capstone · AI-CSE-EXP

IEC 62443 Cybersecurity Expert

40-hour practical · multi-stage pentest + report defence · valid 3 years

Path Details

Lab Environment

Pentest the protocols — without crashing your client’s plant.

Each lab boots a sandboxed simulator (pymodbus, snap7, cpppo) with a realistic plant scenario. Use the same tools you’d ship in your kit: nmap NSE, mbtget, scapy, Wireshark. Capture pcap, write your finding, submit. Pass criteria match the ISA/IEC practical exam.

LAB-01READY

Modbus pentesting

502tcp

Forced coil writes · enumeration · DPI defense

pymodbus-simulator

LAB-02READY

S7comm exploitation

102tcp

STOP/RUN abuse · block download · plcscan

snap7-simulator

LAB-03QUEUE

EtherNet/IP & CIP

44818udp

CIP class abuse · CompactLogix CVE-2024-21912

cpppo-simulator

LAB-04READY

HMI hardening

L3.5dmz

View ME RCE · zone & conduit design

view-me-mock

OT-first content

Lessons start at the PLC, not at "ICS is like IT but with valves". Every chapter ends with a hands-on lab, not a multiple-choice cliff.

Tied to live threats

Each module references current CISA advisories. When a new CVE drops, the affected lesson lights up and the relevant lab gets a new scenario.

Built for defenders

No vuln-shaming. The platform leans into IEC 62443-3-3 SR mappings so you leave with a hardening checklist, not just an exploit.

ArmorInnovate.OS

Take the operating system for OT defense for a spin.

Free Foundations track · sandbox lab access · no credit card.

Create your account Browse the Knowledge Base