We fulfill our mission at Project Gunsway primarily through vulnerability research, and ethical, coordinated disclosure of vulnerability information. Our most recent efforts have centered on diesel engine control units (DCUs) used in marine propulsion and electric power systems.
This week Carnegie Mellon University's CERT CC has issued four Common Vulnerability Enumeration (CVE) notices related to our work analyzing Auto-Maskin brand equipment. In the coming weeks we will post additional "deep-dive" information on the reverse-engineering work that led to this release.
We thank all parties involved in assisting us with coordinating disclosure including the Maritime and Port Security ISAO (MPS-ISAO), US-CERT and ICS-CERT, as well as Norway CERT.
Please refer to the following link for the full notice: https://www.kb.cert.org/vuls/id/176301
Today, our reliance on computers and information technology is increasing faster than our ability to safeguard ourselves. Modern ships are i...
We are Project Gunsway--grassroots volunteers committed to ensuring that maritime-related technologies are worthy of the trust we place in t...
Our talk from DerbyCon is now up on IronGeek for your viewing edification. We have also added a page for videos from conferences. Primer...