RustShield Security builds protocol-aware security gateway proofs of concept for cyber-physical and critical-infrastructure laboratory workflows.
Our public work focuses on stateful semantic shielding: transparent gateways that inspect legacy or safety-critical protocol traffic, keep a small view of observed system state, apply explicit command policies, and produce reproducible lab evidence for security review.
RustShield Gateway is a Rust-based MAVLink security gateway technical preview for controlled UAV and robotics SITL/laboratory validation.
It sits between a Ground Control Station and a MAVLink vehicle or simulator. It observes MAVLink traffic, applies selected semantic command policies, and produces logs, metrics, and public evidence summaries for security review.
Repository:
https://github.com/RustShield-Security/rustshield-gateway
Public release:
https://github.com/RustShield-Security/rustshield-gateway/releases/tag/v0.1.0-lab-preview
RustShield Modbus Gateway is a Rust proof of concept for stateful semantic filtering of Modbus TCP traffic in local OT/ICS lab simulations.
It runs as a transparent TCP proxy between a simulated SCADA/client and a simulated PLC. It parses Modbus TCP frames, observes read responses, keeps an in-memory view of process state, and blocks a protected Write Single Coil command when the observed state is unknown, stale, or unsafe.
Repository:
https://github.com/RustShield-Security/rustshield-modbus
Public release:
https://github.com/RustShield-Security/rustshield-modbus/releases/tag/v0.1.0-lab-preview
RustShield Auditor is a passive, local-first field evidence tool for early assessment of industrial and robotic networks.
It reads offline PCAP/PCAPNG captures and synthetic lab fixtures, profiles Modbus TCP and MAVLink traffic at a conservative protocol level, and produces reproducible evidence packs with observed assets, risk findings, explicit limitations, and candidate RustShield gateway policies.
Repository:
https://github.com/RustShield-Security/rustshield-auditor
Public release:
https://github.com/RustShield-Security/rustshield-auditor/releases/tag/v0.1.0-lab-preview
- Protocol-aware security gateways for cyber-physical systems.
- Stateful semantic command policy for high-risk operations.
- Passive offline traffic analysis and reproducible evidence capture.
- MAVLink UAV and robotics laboratory validation.
- Modbus TCP OT/ICS laboratory simulation.
- Fail-safe handling for unknown, stale, malformed, or unsupported states.
- Read-only observability, metrics, logs, and reproducible evidence capture.
- Controlled local simulation before any discussion of real hardware or production networks.
- No certified flight readiness.
- No production OT security or safety certification.
- No real UAV, PLC, plant network, radio, or hardware validation in the public previews.
- No complete coverage of MAVLink, Modbus, or all cyber-physical attack paths.
- No cryptographic authentication claim for the Modbus TCP PoC.
- No MAVLink signing validation in the auditor: signing presence is observed and reported, not cryptographically verified.
- No physical process semantics from traffic alone: Modbus register and coil meaning requires operator-provided context.
- No replacement for autopilot hardening, PLC/SCADA hardening, key management, network segmentation, access control, or OT risk governance.
- No replacement for professional security audit or OT risk management.
RustShield Security is open to assessment, laboratory pilot, and partner-integration discussions with UAV integrators, drone security labs, robotics security teams, OT/ICS security teams, and critical-infrastructure inspection groups.
Contact:
