We provide top-level infrastructure for experimentation, measurements, testing and verification of large-scale communications systems as well as services, security capabilities and custom solutions in modern communications and data environments.


  • A comprehensive experimentation and prototyping environment comprising IP network, 5G mobile core and indoor radio access network, as well as IoT, cloud infrastructure and data services ecosystem
  • Spirent test, measurement and verification system for wireless communications environments
  • Security test and verification toolkit
  • A broad range of capabilities and services supporting tailored experimentation in advanced use cases, including powerful emulation capabilities, deep packet inspection (DPI) and real-time and post analytics services
  • Hosted on virtualised infrastructure with remote access, APIs and graphical user interfaces, and test automation capabilities

5G Indoor System

An experimental 5G system deployment comprising a 5G SA core and 5G-enabled multimode indoor wireless access network.

Go to tab

Test Infrastructure and Services

A powerful system based on Spirent TestCenter modules and a range of additional cybersecurity and networking tools.

Go to tab


A cybersecurity facility that operates several services for monitoring attacker activity and collection of attack data in real time.

Go to tab

5G Indoor System

An experimental 5G system deployment comprising a 5G SA core and 5G-enabled multimode indoor wireless access network.

5G core

A complete SA 5G Core network implementation optimised for eMBB use cases. The deployment comprises core functionalities and capabilities of a compact small-scale 5G system, including SBA and SDN/NFV support.

  • Based on Iskratel 5G SA core compact solution
  • Optimised for eMBB use case experimentation
  • 3GPP Rel.15/Rel.16 compliant call flow scenarios
  • Configurable behaviour through OAM functionalitiesbased on JSON and NETCONF-XML
  • A wide range of supported interfaces: N1, N2, N3, N4, N6, N11
  • Support for up to 1000 active registrations, up to 1000 simultaneous PDU sessions
  • Support for Cloud Native Function (CNF) deployment on a Kubernetes (k8s) infrastructure
  • Support for SDN and NFV, 3GPP compliant service-based architecture (SBA)
  • Automated network management with built-in NFV provisioning allowing for flexible NF configurations
  • Includes Prometeus monitoring system

Multimode indoor wireless solution

An indoor multimode radio coverage solution, customized for large and medium-sized venues. Based on Huawei LampSite, the base station solution consists of a baseband unit (BBU), Pico Remote Radio Unit (pRRU), and RRU HUB (RRU HUB), providing a future-proof and 5G-enabled coverage system that can suppor a range of experiments, testing and verification projects for indoor scenarios.

  • Based on Huawei Lampsite Base Station Solution
  • Comprises a baseband unit (BBU5900), pico-power remote radio unit (pRRU5961) and RRU HUB (RHUB5963e)
  • BBU throughput 25 Gbit/s (DL+UL) in FDD and TDD mode
  • SDR-based multi-band operation and integrated FDD and TDD deployment modes and evolution to unlicensed spectrum
  • NR (TDD and FDD), LTE (TDD, FDD, NB IoT)and GSM/CDMA/UMTS radio access coverage
  • pRRU supported frequency ranges 1800 MHz (Band 3/n3), 2100 MHz (Band 1/n1) and 3500 MHz (n78)
  • Optical and CPRI link support (10.1376/24.33024 Gbit/s)
  • Up to 100 MHz bandwidth support (in 3500 MHz band, NR TDD mode)
  • MIMO 2×2 DL support

Test Infrastructure and Services

A powerful system based on Spirent TestCenter modules and a range of additional cybersecurity and networking tools that support test, measurement and verification of solutions and services in different communications environments on network, transport and application layers.

Key infrastructure capabilities

  • Based on Spirent SPT-N4U chassis, Spirent MX2-1G-S16 Test Module and Spirent FX3-QSFP28-4 Module
  • Performance, conformance and functional tests of large-scale solutions under normal and strenuous conditions
  • Available interfaces 16x 1Gbps and 4x 100 Gbps
  • Full dual-stack IPv4/IPv6 support
  • Powerful L2 – L7 control and user plane test, emulation and validation capabilities
  • A range of predefined and customizable test cases and scheduling algorithms for tests of real-world traffic and traffic pattern strains
  • Capabilities for ultra-low submicrosecond latency measurements
  • Emulation of a wide range of device types, users and protocols
  • A range of deep analysis capabilities in real-time and post-processing, with overview and drill-down insights
  • Remote access and control through a graphical user interface with access to traffic control capabilities and analytics services
  • Interface for script-based automation

Application Tests and Verification Capabilities

  • Support for SDN performance and functional tests (supported technologies VXLAN, EVPN, OpenFlow, PCE, Segment Routing and BGP-LS)
  • L2 and L3 service tests (unicast routing, multicast routing, switching, Multicast VPN, EVPN and MPLS VPN technologies)
  • Ethernet services tests (Ethernet OAM (CFM IEEE 802.1ag and Y.1731), MPLS-TP, VPLS, PWE3 Pseudowires, bridged Ethernet, packet transport protocols)
  • Subscriber and access emulation services (incl. Services DHCPv4, DHCPv6-PD, PPPoX and L2TP) using various tunneling technologies (VLAN, L2GRE, MPLS, VPNs, and VPLS)
  • Data center protocol emulation (VXLAN, EVPN, DCBX, FCoE, FIP, 802.1Qbb)
  • Stateful Layer 4-7 protocol emulation (HTTP, SIP and FTP and LACP and LAG)

Deep analysis services

  • Port counts, rates, errors and protocol summaries
  • 40+ real-time measurements per stream including advanced sequencing, latency, jitter and data integrity
  • Per stream metrics with simultaneous control and data plane results
  • Real-time traffic filters
  • Dynamic views with capabilities for multi-metric extraction, sorting and operation in real-time or post analysis
  • Full packet capture for timing, sequencing and content analysis
  • Port-level histogram modes for latency, jitter, interarrival time, frame length, sequence run length and sequence difference check

Price list

Equipment rent and basic support – 80€/h
Equipment rent and advanced support – 120€/h


CyberLab is a cybersecurity facility that operates several services for monitoring attacker activity (SSH, Telnet and HTTP honeypots, network telescope with 256 IP addresses) and collection of attack data in real time.


  • Honeynet: Adistributed network of honeypots in 50+ locations in Europe and USA, attack data collection, analytics and profiling (2019 – present)
  • Network telescope: scanning and backscatter traffic data collection and analytics (2011 – present),
  • Experimental honeypot implementations: development of new domain-specific HTTP-based honeypots with capabilities to emulate any HTTP-based cloud, IoT or web services; e.g., IoT endpoints with iterative adaptation capabilities based on crawler inputs and real “models” (Shodan, etc.), unprotected APIs, web properties that detect illegitimate crawlers, etc.
  • Find out more about the CyberLab: https://www.youtube.com/watch?v=W63L9Rkvmno

CyberLab Features

  • All data is available through the demonstration environment, combined both as a real-time feed and as historical dataset (lookup via APIs).
  • An extensive historical dataset (10+ years for telescope, 3+ years for SSH honeypots and all collected malware) is available for research purposes.
  • Access to the demonstration environment is possible via the web interface or via a comprehensive REST API interface, which allows data to be integrated into various security systems and platforms (SIEM, firewalls, etc.). It naturally provides real data and enables the processing of this data based on machine learning methods or artificial intelligence.
  • A large distributed honeynet
  • 50+ locations in Europe and USA
  • Attack data collection, analytics and profiling (2019 – present)
  • Deep analytics and visualizations:
  • Metadata and sessions from honeypot systems (SSH, Telnet, IoT, APIs, Web),
  • Captured malware,
  • Events detected on the darknet sensor,
  • Additional analyses and enrichment performed on raw data (geolocation of addresses, obtaining data on the ASN provider, results of malicious code analysis, verification and correlation with external databases and threat intelligence feeds).

Find out more about honeypots:


The large amount of data collected presents a problem.
Cyberviz is a tool that helps present the data gathered and helps with understanding:

  • Seizures
  • Origin
  • The goal
  • Chain of actions
  • Characteristics
  • Participating Entities
  • Interconnections