Satellite Hacking 1-Day Workshop

Day 1 • February 19, 2026

09:00 AM

Goa, India

About This Session

This workshop provides a hands-on introduction to satellite cybersecurity, covering satellite communication systems (SATCOM), RF signal analysis, telemetry and telecommand protocols.

Workshop Synopsis

This workshop provides a hands-on introduction to satellite cybersecurity, covering satellite communication systems (SATCOM), RF signal analysis, telemetry and telecommand protocols, satellite OSINT, SDR-based signal capture, packet decoding, command injection simulations, and ground station security.

Participants will explore realistic attack surfaces across space and ground segments using emulated environments and open-source tools, enabling a strong understanding of both offensive techniques and defensive strategies for satellite ecosystems.

•Satellite Systems & Space Threat Landscape

•Overview of satellite missions and use cases

•Types of satellites: LEO, MEO, GEO, CubeSats

•Differences between satellite and terrestrial networks

•Why satellites are high-value cyber targets

•Historical and publicly known satellite cyber incidents

•Space vs aviation vs ground-station attack perspectives

•Satellite Architecture & Internal Subsystems

•Satellite bus vs payload

•Core subsystems: Electrical Power System (EPS), Attitude Determination and Control System (ADCS), Command and Data Handling (C&DH / OBC), Telemetry, Tracking and Command (TT&C), Thermal and structural subsystems

•Trust boundaries within satellite platforms

•Mapping subsystems to cyber-physical attack impact

•Satellite Communication (SATCOM) Fundamentals

•Uplink vs downlink communication

•Role of transponders in satellite systems

•Satellite frequency bands: VHF, UHF, L, S, X, Ku, Ka

•Modulation schemes used in space: BPSK, QPSK, FSK, QAM

•Doppler shift, noise, attenuation, link budget basics

•Why downlink analysis is the primary attack vector

•Satellite OSINT & Orbital Intelligence

•Introduction to space OSINT

•Public satellite databases and catalogs

•Two-Line Element (TLE) structure and purpose

•Keplerian orbital elements explained

•Satellite tracking and pass prediction

•Identifying anomalous or manipulated orbital data

•Intelligence gathering for communication targeting

Software Defined Radio (SDR) for Satellite Analysis

•What is SDR and why it matters for satellite security

•SDR hardware overview (conceptual): RTL-SDR, HackRF, PlutoSDR, USRP

•Antennas, LNBs, and gain considerations

•Understanding spectrum and waterfall displays

•Capturing satellite downlink signals

•Legal and ethical considerations in RF monitoring

•IQ Data & Signal Processing

•What IQ (In-phase & Quadrature) data represents

•Sample rate and bandwidth selection

•Signal recording and storage

•Preparing raw RF data for demodulation

•Identifying satellite signal characteristics

•Demodulation & Satellite Packet Decoding

•Modulation vs demodulation concepts

•Converting RF signals into binary streams

•Overview of CCSDS space packet protocol

•Telemetry (TM) vs Telecommand (TC) packets

•Packet structure: Headers, APID, payload, checksums

•Extracting satellite health and status data

•Satellite Attack Techniques (Simulated & Ethical)

•Passive attacks: Eavesdropping, Traffic analysis

•Active attack concepts: Replay attacks, Spoofing, Jamming (theoretical), Telecommand authentication weaknesses, Command structure manipulation, Power subsystem abuse scenarios

•Impact of malicious telecommand injection

•Ground Station & Terrestrial Segment Security

•Typical satellite ground station architecture

•Role of ICS components in ground stations: PLCs, Modbus/TCP, SCADA systems

•Common vulnerabilities in ground infrastructure

•Attack paths from ground station to satellite

•Antenna positioning and control system risks

•Defense, Standards & Secure-by-Design

•Securing satellite communication links

•Encryption and key management concepts

•Telecommand authentication mechanisms

•Monitoring and anomaly detection

•Ground station hardening strategies

•Introduction to relevant standards: IEC 62443 concepts for ground systems, Secure-by-design principles for space assets, Risk-based satellite security approach

•Hands-On Components (Integrated Throughout)

•Satellite OSINT and orbital analysis

•SDR-based signal capture (simulated & real examples)

•Satellite signal demodulation

•Telemetry packet inspection

•Telecommand manipulation simulation

•Ground station Modbus/PLC attack demonstration

•Attack-to-defense mapping exercises

•Key Takeaways

•Understanding satellite systems from a hacker’s perspective

•Ability to analyze satellite communications

•Awareness of real satellite and ground-station attack surfaces

•Practical exposure to SDR and satellite packet analysis

•Clear understanding of mitigation and defense strategies

Meet the Trainers

Arun Mane

Founder & CEO

Amynasec Research Labs

Arun Mane is a cybersecurity professional with over 18 years of experience working across Automotive, IoT, and Industrial Control System (ICS/OT) security, Drones, Satcomm. As the Founder & CEO of Amynasec Research Labs, he focuses on hands-on security research, including hardware exploitation, firmware reverse engineering, vehicle security, and industrial automation security, helping organizations understand and reduce real-world risk. He is also the Founder of UnoAcademy, a niche training and certification platform created to make specialized cybersecurity skills such as Automotive Security, ICS/OT, IoT security, and advanced VAPT, accessible through practical, real-world learning and mentorship. Arun regularly delivers trainings, workshops, and certification programs globally, covering topics like Automotive Cybersecurity, ISO/SAE 21434, and OT security, often in collaboration with TÜV Rheinland. He has spoken at leading security conferences including BlackHat, DEF CON, NULLCON, ROOTCON, Hardware.io, c0c0n, BSides, and DSCI.

View Profile →

Omkar Mali

Head of Research

Amynasec Research Labs

Omkar Mali is a results-driven Security Professional and Head of Research at Amynasec Research Labs with over 6+ years of hands-on experience in Cybersecurity, Penetration Testing, Red Teaming, IoT Security, Automotive Security, Hardware Testing, and Security Research. He specializes in aerospace security, satellite penetration testing, and cyber-physical systems security. He leads the research department focusing on emerging threats in space systems, aircraft platforms, and critical infrastructure. His expertise spans vulnerability assessment, risk management, and implementing security controls to protect organizational assets across diverse domains including automotive, IoT, and satellite communication systems. Omkar holds multiple industry certifications including CPENT (Certified Penetration Testing Professional), LPT (Licensed Penetration Tester), CISEH, CPTE, CEH (Certified Ethical Hacker), and CNSS. He actively contributes to the cybersecurity community through training programs and security research focused on next-generation threats in aerospace and critical infrastructure.

View Profile →

K. Yuvraj

Research Intern

Amynasec Research Labs

K. Yuvraj is a Research Intern with the Aerospace Security Research Department at Amynasec Research Labs, where he contributes to cutting-edge satellite penetration testing and aerospace cybersecurity research. His work focuses on satellite systems, aircraft platforms, and aviation-related infrastructure security. His research interests lie in space systems and aeronautical technologies, particularly in understanding and analyzing real-world attack surfaces across aerospace environments. He specializes in satellite communication security (SATCOM), RF signal analysis, telemetry and telecommand protocols, and SDR-based signal capture and analysis. As part of the research team, K. Yuvraj is actively involved in developing low-cost, simulated laboratory environments for satellite security research, making aerospace security education more accessible. He contributes to research on satellite OSINT, orbital intelligence, packet decoding, and ground station security vulnerabilities.

View Profile →

Quick Info

Date

February 19, 2026

Time

09:00 AM

Location

Goa, India