From c888b2cd9c2a0276c6711bc3c4bc7894339c1f7c Mon Sep 17 00:00:00 2001
From: Andres <andres.murillo.19@gmail.com>
Date: Thu, 19 Jan 2023 19:24:15 +0800
Subject: [PATCH] First version of the payload replay concealment

---
 .../dataset_config_files/ctown_config_06.yaml | 11 ++++
 .../dataset_config_files/ctown_config_07.yaml | 11 ++++
 .../dataset_config_files/ctown_config_08.yaml | 11 ++++
 .../dataset_config_files/ctown_config_09.yaml | 11 ++++
 .../dataset_config_files/ctown_config_10.yaml | 11 ++++
 .../dataset_attacks/attack_06.yaml            | 54 +++++++++++++++++++
 .../dataset_attacks/attack_07.yaml            | 54 +++++++++++++++++++
 .../dataset_attacks/attack_08.yaml            | 38 +++++++++++++
 .../dataset_attacks/attack_09.yaml            | 38 +++++++++++++
 .../dataset_attacks/attack_10.yaml            | 17 ++++++
 examples/example/example_attack.yaml          | 18 +++++++
 11 files changed, 274 insertions(+)
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/ctown_config_06.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/ctown_config_07.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/ctown_config_08.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/ctown_config_09.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/ctown_config_10.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_06.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_07.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_08.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_09.yaml
 create mode 100644 examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_10.yaml
 create mode 100644 examples/example/example_attack.yaml

diff --git a/examples/ctown_topology/dataset/dataset_config_files/ctown_config_06.yaml b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_06.yaml
new file mode 100644
index 00000000..5e53419c
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_06.yaml
@@ -0,0 +1,11 @@
+inp_file: ctown_map.inp
+iterations: 2880
+network_topology_type: complex
+plcs: !include ctown_plcs.yaml
+log_level: debug
+simulator: epynet
+demand: pdd
+output_path: attack_output_06
+demand_patterns: events/demands_ctown_01.csv
+initial_tank_data: events/tanks_ctown_01.csv
+attacks: !include dataset_attacks/attack_06.yaml
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/ctown_config_07.yaml b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_07.yaml
new file mode 100644
index 00000000..56905201
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_07.yaml
@@ -0,0 +1,11 @@
+inp_file: ctown_map.inp
+iterations: 2880
+network_topology_type: complex
+plcs: !include ctown_plcs.yaml
+log_level: debug
+simulator: epynet
+demand: pdd
+output_path: attack_output_07
+demand_patterns: events/demands_ctown_01.csv
+initial_tank_data: events/tanks_ctown_01.csv
+attacks: !include dataset_attacks/attack_07.yaml
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/ctown_config_08.yaml b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_08.yaml
new file mode 100644
index 00000000..a6089282
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_08.yaml
@@ -0,0 +1,11 @@
+inp_file: ctown_map.inp
+iterations: 2880
+network_topology_type: complex
+plcs: !include ctown_plcs.yaml
+log_level: debug
+simulator: epynet
+demand: pdd
+output_path: attack_output_08
+demand_patterns: events/demands_ctown_01.csv
+initial_tank_data: events/tanks_ctown_01.csv
+attacks: !include dataset_attacks/attack_08.yaml
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/ctown_config_09.yaml b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_09.yaml
new file mode 100644
index 00000000..1d20a390
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_09.yaml
@@ -0,0 +1,11 @@
+inp_file: ctown_map.inp
+iterations: 2880
+network_topology_type: complex
+plcs: !include ctown_plcs.yaml
+log_level: debug
+simulator: epynet
+demand: pdd
+output_path: attack_output_09
+demand_patterns: events/demands_ctown_01.csv
+initial_tank_data: events/tanks_ctown_01.csv
+attacks: !include dataset_attacks/attack_09.yaml
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/ctown_config_10.yaml b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_10.yaml
new file mode 100644
index 00000000..147699b6
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/ctown_config_10.yaml
@@ -0,0 +1,11 @@
+inp_file: ctown_map.inp
+iterations: 2880
+network_topology_type: complex
+plcs: !include ctown_plcs.yaml
+log_level: debug
+simulator: epynet
+demand: pdd
+output_path: attack_output_10
+demand_patterns: events/demands_ctown_01.csv
+initial_tank_data: events/tanks_ctown_01.csv
+attacks: !include dataset_attacks/attack_10.yaml
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_06.yaml b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_06.yaml
new file mode 100644
index 00000000..d9367f8e
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_06.yaml
@@ -0,0 +1,54 @@
+network_attacks:
+- name: plc5attack1
+  type: concealment_mitm
+  tags:
+    - tag: PU10
+      offset: 0.0
+    - tag: PU11
+      offset: 0.0
+    - tag: PU10F
+      offset: 0.0
+    - tag: PU11F
+      offset: 0.0
+  target: PLC5
+  concealment_data:
+    type: payload_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
+
+- name: plc9attack
+  type: concealment_mitm
+  tags:
+    - tag: T7
+      offset: 0.0
+  target: PLC9
+  concealment_data:
+    type: payload_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
+
+device_attacks:
+- actuator: PU10
+  command: closed
+  name: plc5attack2
+  trigger:
+    start: 1440
+    end: 1812
+    type: time
+- actuator: PU11
+  command: closed
+  name: plc5attack3
+  trigger:
+    start: 1440
+    end: 1812
+    type: time
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_07.yaml b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_07.yaml
new file mode 100644
index 00000000..4d64d731
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_07.yaml
@@ -0,0 +1,54 @@
+network_attacks:
+- name: plc5attack1
+  type: concealment_mitm
+  tags:
+    - tag: PU10
+      offset: 0.0
+    - tag: PU11
+      offset: 0.0
+    - tag: PU10F
+      offset: 0.0
+    - tag: PU11F
+      offset: 0.0
+  target: PLC5
+  concealment_data:
+    type: network_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
+
+- name: plc9attack
+  type: concealment_mitm
+  tags:
+    - tag: T7
+      offset: 0.0
+  target: PLC9
+  concealment_data:
+    type: network_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
+
+device_attacks:
+- actuator: PU10
+  command: closed
+  name: plc5attack2
+  trigger:
+    start: 1440
+    end: 1812
+    type: time
+- actuator: PU11
+  command: closed
+  name: plc5attack3
+  trigger:
+    start: 1440
+    end: 1812
+    type: time
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_08.yaml b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_08.yaml
new file mode 100644
index 00000000..ba97495f
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_08.yaml
@@ -0,0 +1,38 @@
+network_attacks:
+- name: plc9attack
+  type: concealment_mitm
+  tags:
+    - tag: T7
+      offset: 5.0
+  target: PLC9
+  concealment_data:
+    type: payload_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
+
+- name: plc5attack
+  type: concealment_mitm
+  tags:
+    - tag: PU10
+      offset: 0.0
+    - tag: PU11
+      offset: 0.0
+    - tag: PU10F
+      offset: 0.0
+    - tag: PU11F
+      offset: 0.0
+  target: PLC5
+  concealment_data:
+    type: payload_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_09.yaml b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_09.yaml
new file mode 100644
index 00000000..a7bd617c
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_09.yaml
@@ -0,0 +1,38 @@
+network_attacks:
+- name: plc9attack
+  type: concealment_mitm
+  tags:
+    - tag: T7
+      offset: 5.0
+  target: PLC9
+  concealment_data:
+    type: network_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
+
+- name: plc5attack
+  type: concealment_mitm
+  tags:
+    - tag: PU10
+      offset: 0.0
+    - tag: PU11
+      offset: 0.0
+    - tag: PU10F
+      offset: 0.0
+    - tag: PU11F
+      offset: 0.0
+  target: PLC5
+  concealment_data:
+    type: network_replay
+    capture_start: 300
+    capture_end: 672
+    replay_start: 1440
+  trigger:
+    start: 295
+    end: 1820
+    type: time
\ No newline at end of file
diff --git a/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_10.yaml b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_10.yaml
new file mode 100644
index 00000000..0da8f2d9
--- /dev/null
+++ b/examples/ctown_topology/dataset/dataset_config_files/dataset_attacks/attack_10.yaml
@@ -0,0 +1,17 @@
+network_attacks:
+- name: plc9attack
+  type: mitm
+  target: PLC9
+  tag: T7
+  offset: 4.5
+  trigger:
+    start: 1440
+    end: 1812
+    type: time
+
+- name: plc9conceal
+  type: unconstrained_blackbox_concealment_mitm
+  trigger:
+    start: 1440
+    end: 1812
+    type: time
\ No newline at end of file
diff --git a/examples/example/example_attack.yaml b/examples/example/example_attack.yaml
new file mode 100644
index 00000000..3d3fe2dc
--- /dev/null
+++ b/examples/example/example_attack.yaml
@@ -0,0 +1,18 @@
+network_attacks:
+- name: plc4attack
+  type: concealment_mitm
+  tags:
+    - tag: T3
+      offset: 10.0
+    - tag: T4
+      offset: 10.0
+  target: PLC4
+  concealment_data:
+    type: payload_replay
+    capture_start: 10
+    capture_end: 20
+    replay_start: 30
+  trigger:
+    start: 10
+    end: 50
+    type: time
\ No newline at end of file