This is a 3 day hands-on IoT hacking class. It covers all aspects of IoT Security, from the technologies and testing methodologies to the vulnerabilities. The main focus is offensive security: attacking and testing the devices and platforms.

We first cover the basics and lay out the ground with concepts before diving into the actual hacking. This provides the understanding of what and why the things can be hacked, with a good mix of knowledge and learning-by-doing or in this case learning-by-hacking.

Students will receive a free IoT Hacking Kit (hardware with a value of +300 Euros), which contains the tools and some vulnerable devices used in class, so that they can continue sharpening their skills or hack devices after the event.

Note: The training is available as both on-site private and public training class.


  • IoT Security Concepts

  • IT and IoT Pentest methodologies and frameworks

  • Firmware hacking

  • Bluetooth

  • Hardware and debugging interfaces

  • Software defined radio

Key indicators


Learning Objectives

After the class, the attendees will be able to evaluate the security of different IoT architectures, identify the attack surface, knowledge of security testing methodologies and how to use them, dump, extract and analyze device firmware, hack UART, SPI, I2C and JTAGs, debug and attack hardware and software, analyze protocols, attack radio and wireless communications like BLE, Zigbee, and custom protocols and much more.

All the topics above are taught with learning-by-hacking in mind, with a combination of theory and hands-on labs.

Target audience

  • Security Professionals
  • IT Professionals
  • Embedded Security Enthusiasts
  • All kinds of professionals with an understanding of IT or hacking
  • Anyone interested in learning IoT device hacking

Course Content

Day 1:

* IoT Security Concepts
– Identify the attack surface
– Evaluate the security of different IoT architectures
* IT and IoT Pentest methodologies and frameworks
– Concepts
– Sniffing
– MiTM attacks and proxy attacks

Day 2:

* Firmware
– Definitions
– Dump, extract and analyze device firmware
– Emulate parts of and entire firmware
– Adding a backdoor and re-building firmware
* Hardware and debugging interfaces
– Electronics 101
– Serial interfaces: UART, SPI, I2C and JTAG
– Extracting firmware and data from EEPROM chips
– JTAG debugging, exploitation

Day 3:

* Software defined radio
– Concepts
– Sniffing and reversing radio frequencies
– Working with 433 MHz: rx, tx, decoding
* Zigbee
– Concepts
– Working with Zigbee: rx, tx, decoding
– Hacking Zigbee
* Capture the Flag

Additional information


  • Laptop with at least 50 GB free space and at least 8 GB RAM, external USB access (3 ports), Virtualization software (Virtualbox or VmWare)
  • Eagerness to learn
  • Basic knowledge of Linux or UNIX (especially bash) is always an advantage

What we will provide:

  • IoT hacking Kit (to take home and practice the skills learned in class)
  • PDF files of slides and workbooks
  • All meals and refreshments (on public trainings)


  • Reference material (slides, handouts, etc.): English
  • Classes: English (on public classes), Private classes can be held in Spanish or German


€2,400.00 incl. 19% VAT    Early Bird

€2,700.00 incl. 19% VAT   Standard

Price includes: event attendance and an exclusive IoT Security Hacking Kit.

If you are a student, you will get a 40 % discount on the regular price!

All you need to do is send us the proof of being an active student.

Next trainings

No Events

Book your training now

Make sure you take advantage of the Early Bird discount!

Seats in these classes are limited to ensure personalized experience and encourage maximum collaboration

IoT security hacking kit v2

The IoT Security Hacking Kit contains all the tools and devices used in our hands-on classes and can only be obtained by attending the IoT Security Bootcamp.

You can use it to learn-by-hacking in class and to keep your skills sharp after it.

  • All the basic tools for IoT security

    Take home all the tools you need and learned to use in the bootcamp

  • Free with each bootcamp registration

  • Exclusive for SevenShift trainees


  • Software defined radio (SDR) kit
  • BLE snifing tools
  • BLE dongles
  • General purpose USB to GPIO + SPI + I2C + JTAG + UART adaptor
  • Breadboard + jumper wires and cables
  • Zigbee sniffer
  • Digital Multimeter
  • 2 x NRF52840 DK
  • and more

Note: the content of the kit varies per session based on the content and availability

Meet the trainer

Pablo Endres

Managing director / Lead Security Consultant / Trainer

Pablo Enjoys hacking, IoT, teaching, working with new technologies, startups, collaborating with Open Source projects, learning new things and being challenged.

In the last couple of years, he has been working mainly IoT security, testing dozens of devices and working with multiple platform providers to secure their solutions.

  • Professional Hacker
  • Experienced professional

    Not just a trainer
    15+ years of experience in security

  • Tested dozens of IoT devices and ecosystems
  • Well structured
  • Can change gears

    Adapts explanations to the level of the crowd

  • Can explain complex things in simple words
  • Passion for teaching

Comments from our students

“Training was really comprehensive and engaging with excellent focus on vulnerabilities and threat vectors specific to IoT domain. I will recommend it to every company or individual, who is serious about IoT Security deployment”.

“A very well structured and detailed training series with the right mix of theory and practice. Pablo Endres goes into the participants´ previous knowledge, questions and comments individually. His experience as an IT Security Expert enables him to give useful and very valuable tips”.

The session was great!

For a beginner like me, I could not ask for anything more, it covered all aspects of IoT. The session was really engaging, filled with positive and negative examples. I like to know every aspect of something, I found it very beneficial to learn about all aspects of IoT.

(…) I learnt a lot of new things that I had no knowledge about before.

“The IoT Security Bootcamp by SevenShift, was a great experience with tons of information to digest. 

Pablo clearly knows the field and was able to go through the dense and challenging material during 3 amazing days. 

I walked out with actionable knowledge, and starting using directly for our projects. 

I would highly recommend the Bootcamp for anyone doing or getting in to IoT.”

“In May 2019, I attended the IoT Security Bootcamp by SevenShift. I have nothing but praise for how the workshop was run. Especially due to the trainer Pablo Endres, who was always more than pleased to help whenever I had a question.

Even though I was really rusty on programming and all technical matters, I had no issue understanding the material, which is really easy to digest once you are on track.

At each chapter of the Bootcamp, everything was explained in detail and you can notice the experience and passion of the instructor on this topic, which inspires you.  You will end up wanting to stay longer so you can learn more about it.

The course is absolutely fun and I highly recommend it. You will learn a lot about IoT and hacking!”

“In-depth and very well structured training. Even with a good  IT, electronics and microelectronics background, there is lots to be learned. It is also interesting to see things that you know from a completely different perspective. 

The training is absolutely recommendable for beginners as well as for advanced users, basic Linux knowledge is helpful to allow you to concentrate on the relevant course content. 

Basically, only a laptop with VirtualBox is needed to participate. A business model with many USB ports and a well supported Linux distribution is the better choice.  Due to the openness, makes it much easier to set up the hardware used for the class. 

The IoT kits contained in the course are equipped with a very good selection of different components. Not only can you solve the tasks individually or with a partner during the course, but can later repeat everything again and learn further.

The slides are in English, which makes sense due to the many technical terms. The trainer Pablo Endres can hold the event not only in English but also in German and Spanish. Because of the small groups the trainer can attend to individual participants. By the way, the venue is very good, the breaks are well chosen; food and drinks are tasty :-D”

“The IoT Security Bootcamp is a very well-rounded workshop to learn and experiment with IoT hacking. It covers a lot of topics and is structured around hands on activities. Pablo is a great teacher and his workshop has definitively deepen my interest for IoT security”.