Published December 13, 2025 © Apache-2.0

OpenPLC Lab with raspberry for Ethical Hacking

A simulated environment controlled by PLCs using OpenPLC give us a practical understanding of how industrial (OT) system works

AdvancedProtipOver 1 day108

OpenPLC Lab with raspberry for Ethical Hacking

Things used in this project

Hardware components

Raspberry Pi 3 Model B

Seeed Studio Grove - 4-Channel SPDT Relay

Axial Fan, 12 VDC

9V 1A Switching Wall Power Supply

Software apps and online services

OpenPLC

Google Colab

https://www.wireguard.com/

Story

I designed a practical exercise that immerses students in a simulated environment controlled by PLCs using OpenPLC.

This experience allows for a hands-on understanding of how industrial technology (OT) systems operate, communicate, and—above all—how they can be compromised if appropriate protection measures are not implemented.

Technologies based on industrial control systems (ICS, SCADA, PLCs) are the foundation of essential infrastructures such as energy, water, healthcare, and transportation. However, their interconnection with IT environments exposes them to increasing risks.

Protecting OT infrastructure is no longer a technical option: it is a strategic imperative for the resilience of countries and the continuity of essential services.

This lab using OpenPLC as slave on a raspberry pi 3 connect by VPN to other OpenPLC as master on Google Cloud virtual machine. The OpenPLC en the cloud is open to student for explore service and try to get access and manipulate the fan connect to raspberry using ModBusTCP protocol.

ModBusTCP can be access using python libraries on your own laptop or in https://colab.research.google.com/ that permit program and run python code online.

Code

Python script for ModbusTCP

!pip install pyModbusTCP

from pyModbusTCP.client import ModbusClient

c = ModbusClient(host="34.29.119.21", port=502, unit_id=0, auto_open=True)
regs = c.read_holding_registers(0, 12)
print(regs)

c = ModbusClient(host="34.29.119.21", port=502, unit_id=0, auto_open=True)
coils_l = c.read_coils(811, 8)
print(coils_l)

c = ModbusClient(host="34.29.119.21", port=502, unit_id=0, auto_open=True)
coils_l = c.write_single_coil(811, False)
print(coils_l)

c = ModbusClient(host="34.29.119.21", port=502, unit_id=0, auto_open=True)
coils_l = c.write_single_coil(811, True)
print(coils_l)

c = ModbusClient(host="34.29.119.21", port=502, unit_id=0, auto_open=True)
for i in range(0,10):
  coils_l = c.read_coils(i, 8)
  print(coils_l)
  for j in range(0,7):
    if coils_l[j]:
      print(i)

Credits

Gabriel Coello

4 projects • 1 follower

OpenPLC Lab with raspberry for Ethical Hacking

Things used in this project

Hardware components

Software apps and online services

Story

Schematics

Architecture

Code

Python script for ModbusTCP

Credits

Gabriel Coello

Comments

Embed the widget on your own site

OpenPLC Lab with raspberry for Ethical Hacking

OpenPLC Lab with raspberry for Ethical Hacking

Things used in this project

Hardware components

Software apps and online services

Story

Schematics

Architecture

Code

Python script for ModbusTCP

Credits

Gabriel Coello

Comments

Related channels and tags