Wi-Fi Threats and Detection
RCCE students will learn wireless network security including 802.11 protocol analysis, WPA2 and WPA3 authentication mechanisms, enterprise wireless architecture design, rogue access point detection, evil twin attacks, deauthentication attacks, and wireless intrusion detection systems. RCCE students will learn to assess wireless network security posture, capture and analyze wireless traffic, identify unauthorized wireless devices, configure enterprise-grade wireless security using RADIUS and 802.1X, implement wireless network segmentation, and respond to wireless security incidents including unauthorized access point deployment and client-side attacks. This threat-focused course teaches students to think like adversaries while building robust defenses. Building on core knowledge, RCCE students will learn to analyze attack techniques, build detection logic, and implement defensive strategies that proactively identify threats before they cause damage. Students develop a threat-informed mindset that drives better security decisions across all operational activities.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Wi-Fi Threats and Detection
- Build detections and response workflows for privilege escalation
- Explain Course Overview fundamentals
- Execute hands-on tasks for what you will learn
- Execute hands-on tasks for skills you will gain — covering Capture and analyze wireless traffic.
- Execute hands-on tasks for 802.11 protocol fundamentals
- Execute hands-on tasks for protocol standards
- Execute hands-on tasks for key frequencies — covering 2.4 GHz: 14 channels, 3 non-overlapping.
- Execute hands-on tasks for 802.11be (wi-fi 7): mlo, 320 mhz channels — covering 2.4 GHz: 14 channels, 3 non-overlapping.
- Execute hands-on tasks for data: qos data, null, eapol key exchange frames
- Execute hands-on tasks for 802.11 frame structure
- Execute hands-on tasks for protected frame bit for encryption — covering Addressing Modes.
- Execute hands-on tasks for management frame analysis
| Module 01 | Wi-Fi Threats and Detection |
| Module 02 | Course Overview |
| Module 03 | What You Will Learn |
| Module 04 | Skills You Will Gain |
| Module 05 | 802.11 Protocol Fundamentals |
| Module 06 | Protocol Standards |
| Module 07 | Key Frequencies |
| Module 08 | 802.11be (Wi-Fi 7): MLO, 320 MHz channels |
| Module 09 | Data: QoS Data, Null, EAPOL key exchange frames |
| Module 10 | 802.11 Frame Structure |
| Module 11 | Protected Frame bit for encryption |
| Module 12 | Management Frame Analysis |
| Module 13 | Beacon Frames |
| Module 14 | Probe Req/Resp |
All hands-on labs run on Rocheston Rose X OS. Students practice wi-fi threats and detection by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Build detections and response workflows for privilege escalation
- Lab 2: Explain Course Overview fundamentals
- Lab 3: Execute hands-on tasks for what you will learn
- Lab 4: Execute hands-on tasks for skills you will gain
- Lab 5: Execute hands-on tasks for 802.11 protocol fundamentals
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Wi-Fi Threats and Detection, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI