You have any questions?
During this class, we will demonstrate in practice several attacks that can be performed, especially on User Equipment, but we will also cover the topic of attacking the core network.
This course will use Software-Defined Radio mostly to cover the maximum of attacks that can be applied to mobile phones, IoT modules, connected cars, and other infrastructures.
With this class, students will learn how to hunt for vulnerability in mobile radio communications and core networks:
Day 1 will introduce the mobile network and its evolution and compare the security features of 2G, 3G, 4G, and 5G. During this day, attendees will see how to make testbeds with Software-Defined Radio for the different cellular technologies and be able to analyze communications. In addition, we will learn how to observe the signaling and the data exchanged between devices and the mobile network and perform tests on connected devices/IoT devices, for example.
Participants will also get advice to use an SDR device as a mobile station efficiently.
Days 2 and 3 will focus on attacking mobile devices in a Blackbox context without physical access to devices. These parts will lead to fundamental and smart-jamming attacks to downgrade communications and be able to intercept a device. We will also see ways to perform fuzzing tests on mobile protocol stacks to find vulnerabilities over the air but also other ways to optimize bugs hunting.
The content of private trainings can be arranged depending on your needs. We also provide additional content as follows:
Sébastien is the founder of PentHertz Consulting, a company that specializes in wireless and hardware security. He has a strong passion for identifying vulnerabilities in radio communication systems and has published research on various aspects of mobile security, including 5G security, Open RAN, baseband fuzzing, interception, mapping, and more. Additionally, he has conducted research on data transmission using power-line communication technologies, such as HomePlug AV, which includes domestic PLC plugs, as well as their applications in electric cars and charging stations. Sébastien also focuses on practical attacks involving various technologies like Wi-Fi, RFID, and other wireless communication systems.
If you need to send us a mail regarding the course, please write to us at [email protected] for more information.
3-day remote live training, including a Full-duplex TX/RX SDR kit (bladeRF 2.0 micro xA4), slides, Docker container, scripts/tools and captures. The content can be customized depending on the means and required days for the training.
An extra discount can be negotiated depending on the number of attendees.
Content can be fully tailored depending on your needs.
New content, events, products, services, and more!