Skip to main content

Cyber Sensing and Analytics

Projects

close up of circuit board

Improving operational monitoring for critical infrastructure with the ORNL Testable Access Control Kit (OTACK)

Enhanced monitoring systems use sensors, telemetry, and log data to detect anomalies or potential attacks across sectors like:
• Power grids (SCADA/ICS systems)
• Water treatment facilities
• Transportation networks (airports, rail systems)
• Communications (5G, satellite networks)
Use of monitoring systems such as OTACK can provide:
• Early warning for cyberattacks or physical sabotage (e.g., ransomware targeting utilities or malware in smart grids).
• Detection of insider threats or unauthorized access attempts to high-security systems.
• Tracking foreign or state-sponsored intrusion campaigns that aim to disrupt infrastructure during geopolitical tensions
Electricity Authority Station, Image from Envato

Using LLMs to Pentest Critical Infrastructure to Ensure Security with UnCLE, the Un(conventional) C(yber) L(lMs) E(xecutor)

LLMs can enhance offensive and defensive cybersecurity operations involving critical infrastructure (CI), such as energy grids, water treatment plants, transportation networks, and communication systems by:
• Assisting in proactive identification of supply chain vulnerabilities or exploitable legacy systems.
• Supports cyber ranges or red-blue team exercises within government and defense agencies.

Contact

No Profile Image

Crystal Eppinger, Interim Group Lead, Cyber Sensing and Analytics
See Crystal's contact information