It is well established that industrial control systems comprise the operational backbone of modern critical infrastructures, yet their increasing connectivity exposes them to cyber threats that are difficult to study and remedy safely under real-time operational conditions. In this paper, we present ICSSPulse, an open-source, modular, and extensible penetration testing platform designed for the security assessment of ICS communication protocols. To the best of our knowledge, ICSSPulse is the first web-based platform that unifies network scanning, protocol-aware Modbus and OPC~UA interaction, and Large Language Model (LLM)-assisted reporting within a single, lightweight ecosystem. Our platform provides a user-friendly graphical interface that orchestrates enumeration, exploitation, and reporting activities over simulated industrial services, enabling safe and reproducible experimentation. It supports protocol-level discovery, asset enumeration, and controlled read/write interactions, while preserving protocol fidelity and operational transparency. Experimental evaluation using synthetic Modbus test servers, a Factory I/O water treatment scenario, and a custom OPC~UA production-line model demonstrated ICSSPulse's potential to discover active industrial services, enumerate process-relevant assets, and manipulate process variables. A key contribution of this work lies in the integration of an LLM-assisted reporting module that automatically translates technical findings into structured executive and technical reports, with mitigation guidance informed by the ICS MITRE ATT&CK ICS matrix.

翻译：工业控制系统构成现代关键基础设施的运营骨干已是公认事实，然而其日益增长的互联性使其暴露于网络威胁之下，这些威胁在实时运营条件下难以安全研究和补救。本文提出ICSSPulse——一个专为ICS通信协议安全评估设计的开源、模块化、可扩展的渗透测试平台。据我们所知，ICSSPulse是首个将网络扫描、协议感知的Modbus与OPC~UA交互以及大型语言模型辅助报告统一于单一轻量级生态系统的基于Web的平台。该平台提供用户友好的图形界面，可在模拟工业服务上协调枚举、利用和报告活动，实现安全且可重复的实验。它支持协议级发现、资产枚举和受控读写交互，同时保持协议保真度和操作透明度。通过使用合成Modbus测试服务器、Factory I/O水处理场景和定制OPC~UA生产线模型进行的实验评估表明，ICSSPulse具备发现活跃工业服务、枚举流程相关资产及操纵过程变量的潜力。本工作的关键贡献在于集成了LLM辅助报告模块，该模块能自动将技术发现转化为结构化的执行报告与技术报告，其缓解建议参考了ICS MITRE ATT&CK ICS矩阵。