Contact
Back to Courses

Unusual Radio Frequency Penetration Testing (CESH200)

Instructor: Felix and Adam

Book now
BG

Beta Release Pricing

This course is running for the first time, so it is currently in beta, with up to an extra £1,000 off the standard pricing.

Book now to secure the best price this course will ever be offered at.

About the course

Modern devices are whispering to the ether. Every door lock, drone, meter, vehicle, and wearable transmits something. These signals are packed with data, commands, and… mistakes. Most security professionals stop at the antenna, but this course takes you further. The Unusual Radio Frequency Penetration Testing course is where electromagnetic espionage meets practical exploitation. You will learn how to interpret, intercept, and interfere with signals that exist between the digital and the physical world.

This course blends elements of radio-frequency analysis and protocol reverse engineering. It focuses on uncovering hidden channels, manipulating wireless protocols, and understanding the electromagnetic emissions of real systems. Whether it’s a satellite downlink, an industrial telemetry bus, or a proprietary IoT beacon, we show you how to think, listen, decode, and attack.

Expect a technically deep, hands-on experience that moves far beyond SDR basics and into the realm of professional-grade RF analysis and exploitation.

Unusual Radio Frequency Penetration Testing – What you’ll learn

Participants will move from foundational electromagnetic theory through to advanced interception and exploitation. Core areas include:

  • Health and safety (radiation, grounding, shielding)
  • RF theory and spectrum fundamentals
  • Hardware and software for signal acquisition
  • Modulation schemes and demodulation strategies
  • Spectrum reconnaissance and signal hunting
  • Reverse engineering unknown wireless protocols
  • Exploiting poorly implemented encryption and encoding
  • Analogue vs digital signal analysis
  • Signal fingerprinting and classification
  • Hardware-level RF interfacing (connectors, probes, filters)
  • SDR toolchain mastery (GNU Radio, SDR#, URH, GQRX for example)
  • Antenna theory, design, and practical use
  • Direction finding and localisation
  • RF propagation concepts
  • Layer 2 and above protocol challenges
  • Packet injection
  • RF fuzzing
  • Exploitation over the air

From Signal Capture to RF Exploitation

Signals hide everywhere. This course teaches you to find them, understand them, and exploit them. You will learn how to capture and demodulate live signals, fingerprint devices, and reverse engineer unknown or proprietary radio protocols. Expect to get hands-on with spectrum analysers, SDR platforms, and professional-grade RF gear.

We start by understanding how data travels through the air, from the simplest amplitude shift keying to advanced spread-spectrum and OFDM schemes. We then explore interception and manipulation: how to identify what you’re hearing, recover data, and test resilience to intentional interference or replay.

By the end of the course, you’ll have the skills to identify wireless vulnerabilities in the less common parts of embedded systems, IoT devices, and industrial control networks. You’ll also gain an appreciation for the physics involved, from antenna design to electromagnetic propagation and shielding.

The course is designed for professionals already comfortable with hardware hacking or network testing, but open to anyone with a strong technical background and curiosity for signals.

Course dates and pricing

8 – 12 June 2026

After this the course is planned for early Summer 2027 but dates and pricing have not yet been confirmed.

Early bird pricing

  • CESH200 | Early Bird | BETA  – Full Course: 8 – 12 June 2026
    (£2700+VAT/seat including BETA discount)

Early bird pricing gives a major discount to those who book early.  This is available until the 8th of March 2026

Standard pricing

  • CESH200 | BETA – Full Course: 8 – 12 June 2026
    (£3200+VAT/seat including BETA discount)

Extra details

Additional costs include, your travel, accommodation and your breakfast and evening meals.

There is a maximum number of places on this course – booking will close once this maximum is reached or at 12pm (UK time) the day before.

Loading…

You may also like

Team members receiving onsite custom cybersecurity and technical training with hands-on guidance and real-world support in a workplace environment.

Custom Courses and On-Site Training

Bespoke cyber security training tailored to your team, device stack, technical goals, or individual learning needs.

View Course
Calendar showing highlighted dates and scheduled sessions for upcoming cybersecurity, IT, and hands-on technical training courses.

Upcoming Embedded Systems Hacking Courses and Future CESH Modules

Explore upcoming CESH modules covering RF hacking, firmware reverse engineering, glitching, power analysis, and advanced embedded systems security.

View Course
A PCB with Surface Mounted Chips, capacitors, resistors, and headers

CESH100: Electronics and PCB Reverse Engineering

Learn how to analyse and exploit real-world PCBs and embedded systems through practical hardware hacking and firmware extraction.

View Course
View all courses

Get in touch

Register interest