SDR for Ethical Hackers and Security Researchers 4.0

Name: SDR for Ethical Hackers and Security Researchers 4.0
Rating: 4.5 (39 reviews)

GSM & LTE Lab Network Design: Build and Analyze Private Cellular Test Environments Using SDR

Highest Rated

Created byArsalan Saleem, Secure Techware

Last updated 6/2026

English

What you'll learn

Core concepts of GSM & LTE network
How GSM and LTE network operates
Create your own GSM & LTE network
Packet analyzation of GSM & LTE based network
SIM programming for GSM and LTE networks
Role of SDR in GSM & LTE network

Course content

9 sections • 34 lectures • 3h 37m total length

Introduction2:34
Explore GSM and LTE concepts with SDR by building virtual GSM and LTE networks, setting up Lime XDR, programming SIM cards, and capturing GSM and LTE network packets.
01-Other SDR Courses1:48
Build your base in software defined radio by exploring SDR devices and how to use them to identify vulnerabilities in wireless devices.
02-Requirements1:20
Understand the core concept of gsm and lte networks without naming them, and build a virtual gsm network. Prepare blank sim cards, a reader and writer, and a lime device.

01-Family of LimeSDR Boards3:53
02-LimeSDR compare with Other SDR’s7:14
Compare LimeSDR with other SDRs across frequency range, bandwidth, sample rate, duplex mode, transmit channels, interfaces, and open-source status. Examine oscillator position and transmit power to understand performance differences.
03-LimeSDR-USB RF ports3:54
Explore LimeSDR-USB RF ports and antenna connections across ten ports, including channel one and two, low and high frequency paths, wideband options, and transmit channels, with guidance for practical setup.
04-Connecting LimeSDR-USB with U.FL connectors1:22
Connect LimeSDR-USB with U.FL connectors by attaching each connector to the board, ensuring a firm fit for the output path.
05-LimeSDR Suite4:03
06-Firmware Update2:20

01-What is BTS9:01
Explore the gsm network architecture by detailing how phones connect through beta (bts) to a base station controller and transceiver station, with media as hotspot and frequency banks guiding transmission.
02-Creating Virtual BTS with OsmoBTS12:55
Create a virtual base transceiver station with OsmoBTS, showing how a base station controller (BSP) configures betas, manages radio tasks, and connects to the GSM network via MSE and MSP.
03-Different Types of BTS options in SDR World2:20

01-Connecting LimeSDR with OsmoBTS9:21
02-Connecting BSC8:42
Configure BSD for a BSC network by setting country and mobile network codes, 1800 frequency band, signaling time slots, then start Osmo service to connect a phone to GSM.
03-Understanding MSC, MGW, STP, HLR10:02
Explore GSM network architecture and the roles of the mobile switching center (MSE), media gateway (MTW), home location register (SLA), and signaling transfer point (SDP) in subscriber mobility and connectivity.
04-Adding Subscribers to OsmoHLR14:52
Learn to build a private GSM network by storing subscriber details in OsmoHLR, retrieving MSA numbers, and provisioning two subscribers to enable calls and SMS.
05-Packet Capturing with Wireshark10:45
Learn to capture GSM traffic with Wireshark and analyze the packets. Identify text messages and calls, apply GSM filters including GCP for subscriber details, and inspect numbers and messages.

01-Communication between SIM and HLR3:12
02-SIM reader writer tool2:36
Learn to use a sim reader writer tool that supports reading and writing, including blank sim cards for gsm and lte in three sizes, and connect to sim programming software.
03-Programming SIM cards6:33
Demonstrate reading and writing SIM cards, configuring 15-digit MSA numbers, the carrier and ISDN numbers, and applying the com-128-3 encryption algorithm for GSM and LTE programming.
04-Adding new SIM card details in HLR6:01
Add a new subscriber to the HLR by configuring the IMSI, ISDN number, and authentication 2G with the 128 version three encryption, then verify GSM network connectivity.
05-Testing Complete GSM Network with SIM cards7:11
Insert the SIM cards and start the GSM network, enabling automatic connections and testing calls and messages between two phones.

01-GSM vs LTE Network10:53
The lecture compares GSM and LTE networks, noting that LTE delivers high-speed 4G data while GSM runs on 2G/3G, and introduces the free SRS LTE suite for SIM-based internet access.
02-Setup srsLTE on Ubuntu16:34
Install and compile the srsLTE toolchain on Ubuntu, including Soapy SDR, Lime Suite, SRS GWI, and SRS LP, then configure ipc and enp files and add Wireshark for network analysis.
03-Start LTE Network6:49
04-SIM Programming for srsLTE3:02
05-Adding SIM Details in HSS4:49
06-Connecting phones with LTE network8:03
07-Analyze LTE packets with Wireshark2:57
Analyze captured LTE packets with Wireshark to inspect non-secure http traffic, view get and post data, and understand how network operators can see form submissions, highlighting the need for https.

Requirements

LimeSDR (for practical demo)
SIM reader and writer tool (for practical demo)

Description

This fourth installment of the SDR for Ethical Hackers and Security Researchers series focuses on the architecture and operation of GSM and LTE networks within controlled laboratory environments. This course is designed for students, researchers, and cybersecurity professionals who want to understand how cellular networks function at a technical level and how SDR platforms can be used for educational telecom experimentation.

In this course, you will explore the core components of GSM and LTE networks, including BTS, BSC, MSC, HLR, EPC elements, and packet flow structure. Using SDR hardware such as LimeSDR (optional but recommended), you will learn how to set up a private, isolated cellular lab network for research and learning purposes only. A virtual setup option is also available for those without SDR hardware.

You will study SIM provisioning concepts within your own test environment and understand how authentication and identity management work inside cellular systems. Practical labs include controlled call routing within the private lab network, SMS testing between test devices, and packet analysis using tools such as Wireshark to better understand signaling and traffic flow.

All demonstrations are conducted strictly within isolated lab environments and are intended for educational, research, and defensive security purposes only. This course does not teach interception of public cellular networks or unauthorized access to telecom infrastructure. Students are expected to comply with all local telecom regulations and laws.

By the end of this course, you will have a strong technical understanding of GSM and LTE architecture and practical experience building and analyzing private cellular research environments.

Disclaimer:

Important: All exercises and demonstrations in this course are conducted in private lab environments for educational and research purposes only. Students must not attempt to intercept, interfere with, or connect to public GSM or LTE networks. Unauthorized use of cellular networks or SIM cards is illegal and strictly prohibited. This course is intended solely for learning, experimentation, and defensive security practice.

Who this course is for:

Anyone Interested in Software Defined Radio.
Anyone Interested in learning core concepts of GSM and LTE network
Anyone Interested in SIM programming for GSM & LTE network
Anyone who wants to create own GSM & LTE network

SDR for Ethical Hackers and Security Researchers 4.0

What you'll learn

Explore related topics

Course content

Introduction3 lectures • 6min

01-DragonOS Setup2 lectures • 10min

02-LimeSDR Setup6 lectures • 23min

03-Fully Working GSM Network1 lecture • 20min

04-Creating Virtual GSM Network3 lectures • 24min

05-Setup GSM Network with LimeSDR5 lectures • 54min

06-SIM Programming for GSM Network5 lectures • 26min

07-Creating LTE Network7 lectures • 53min

Additional Materials2 lectures • 3min

Requirements

Description

Who this course is for: