Penetration testing in ICS/SCADA environments is different from typical cyber security penetration tests that focus on the IT/corporate environment2. A typical cyber security penetration test focuses on the weaknesses exposed to the outside world that can allow an unauthorized attacker access via the Internet. These Internet-related tests are less common in ICS assessment. SCADA components are considered prime targets for cyber attacks2. SCADA/ICS are considered as nervous systems of Industrial Automation and attackers are very much able to find loopholes and hamper industrial production, the increasing complexity of these systems are taking cybersecurity risks to new levels.