Course Catalogue

Back to Course Search

Get Printable Format

ZSCV012 Physical Penetration Testing (Non-Award)

2026

Sector

Vocational Education and Training

Industry Group

Occupation Type

General Education - Not Occupationally Specific

General Description

This comprehensive course provides hands-on training in physical penetration testing techniques used by security professionals to assess and improve organisational security. Participants learn to identify vulnerabilities in physical security systems through authorised testing methods.

Topics include HID-based attacks using Rubber Ducky and OMG cable, RF security and credential cloning, technical surveillance countermeasures (bug sweeping), lock picking and bypass techniques, and professional security assessment and reporting.

The course also covers social engineering techniques including pretexting, tailgating, and impersonation, enabling participants to assess human factors in physical security.

All activities are framed within lawful, ethical engagement rules with strong emphasis on authorised testing only.

Learning Focus:

Knowledge:

Physical penetration testing lifecycle, scoping, and rules of engagement
Legal, ethical, and safety considerations for physical testing activities
HID-based attacks, keystroke injection, and Ducky Script syntax
RF technologies in access control (LF/HF RFID, NFC, key fobs /faraday protection)
Technical surveillance countermeasures and bug detection principles
Lock mechanisms, bypass techniques, and non-destructive entry principles
Physical security assessment frameworks and professional pen-test reporting
Social engineering tactics and psychological principles used in physical penetration testing
Pretexting, tailgating, and impersonation techniques within ethical and legal boundaries

Skills:

Write and deploy Ducky Script payloads for authorised testing
Perform RF credential assessment using appropriate tools
Conduct structured bug sweeps and document findings
Apply basic lock picking and bypass techniques on training equipment
Conduct physical security walkthroughs using assessment checklists
Draft professional security assessment reports with actionable recommendations
Propose appropriate mitigations and security improvements
Develop and execute social engineering pretexts for authorised security assessments
Identify social engineering vulnerabilities and recommend security awareness measures

Delivery Details
Location	Casuarina campus
Duration	10 weeks, one 3-hour session per week Every Tuesday from 5:00pm to 8:00pm
Study Mode	Face-to-face Combination of theory, demonstrations, and hands-on practical exercises in a controlled lab environment.
Start Date	3rd February 2026

Course Information Flyer(s)

ZSCV012 Physical Penetration Testing (Non-Award) - 2026

Locations and Study Mode
Delivery at all locations is subject to sufficient demand and resources.

Locations:Casuarina

Study Mode: On campus

Subject to demand other locations may become available throughout the year.

Entry Requirements Domestic

Entry requirements for this short course include:

Basic understanding of IT security concepts.
Commitment to ethical conduct and lawful use of techniques.
Signed acknowledgement of course ethics agreement.

Open to security professionals and those entering the field aged 18+.

Resources

Students can bring their own laptop device to class. However, it is not essential for training.

Duration
Estimated completion time: year/s

This short course is delivered over a period of 10 weeks part-time (one 3-hour session per week).

Student Visa holders must study internally full time

Contact Details

To find out more about the course, where and when it is offered, how to enrol or any other information please contact:

Ict, Cyber Security and Digital
Location: Casuarina and Alice Springs Campuses
Phone: 08 8946 7517 (CAS) 08 8959 5461 (ASP)
Email: vet.business@cdu.edu.au