But with Scapy, it allows you to craft your own packet at each layer, and take defaults whenever possible to save you time. Best yet, it takes after the Python object model and leverage what you already know about Python.
The creator of the tool wrote a detail interactive tutorial that is pretty easy to follow:
http://www.secdev.org/projects/scapy/doc/usage.html#interactive-tutorial
Here is the project homepage:
http://www.secdev.org/projects/scapy/
Here is another intro from PacketLife.net:
http://packetlife.net/blog/2011/may/23/introduction-scapy/
I would encourage the motivated to walk thru the tutorial on the Scapy site. Here is my own little experiment:
1. Create a list of eCommerce sites to query port 80 from:
>>>
>>> ecommerceSites = ["www.overstock.com", "www.ebay.com"]
2. Get the results back:
>>> answered, unanswered = sr(IP(dst=ecommerceSites)/TCP(dport=(80)))
Begin emission:
....Finished to send 2 packets.
.*….*
Received 11 packets, got 2 answers, remaining 0 packets
3. Pretty print it with socket module to get the DNS name back:
>>> answered.make_lined_table(lambda (sender,response): ("Commerce Sites", str(socket.gethostbyaddr(sender.dst)), response.sprintf("%IP.src% %IP.proto% %TCP.sport%")))
------------------------------------------+-------------------------+
| Commerce Sites |
------------------------------------------+-------------------------+
('overstock.com', [], ['173.241.154.10']) | 173.241.154.10 tcp http |
('www.ebay.com', [], ['66.211.181.161']) | 66.211.181.161 tcp http |
------------------------------------------+-------------------------+
>>>
>>>
I cheated a litte on the example above by not include any sites that uses Akami VIP (www.buy.com, www.zappos.com, etc) or no reverse lookup (amazon.com) to make the result more clear and meaningful.
Perhaps after I get more experience with the tool I will report back with some more examples. I have some aspiration for projects after seeing how powerful the tool is.
I want to capture all wireless DATA packet using scapy
ReplyDeleteMy Code That I have tried as follows
from scapy.all import *
def PacketHandler(pkt) :
if pkt.haslayer == 2 and pkt.subtype==0:
if pkt.haslayer(IP) :
ip=pkt.getlayer(IP)
print ip.dst
if pkt.haslayer(UDP):
udp=pkt.getlayer(UDP)
print udp.dport
if pkt.haslayer(TCP) :
tcp=pkt.getlayer(TCP)
print tcp.port
sniff(iface="mon0", prn=PacketHandler)
Using this I want to capture all wireless DATA packets but I am getting only multicast ( IP/UDP) packets.So how can I get all DATA packet in my wireless network. I have disabled password of my Access Point for this ( for some time only) so I can get acccess upto data in packets.
Great blog.you put Good stuff.All the topics were explained briefly.so quickly understand for me. I am waiting for your next fantastic blog.get more...
ReplyDeletePython Training in Chennai | Best Python Training in Chennai
Excellent post...
ReplyDeletedenmark web hosting
inplant training in chennai
Nice post..
ReplyDeleteAustralia hosting
Bermuda web hosting
Botswana hosting
mexico web hosting
moldova web hosting
albania web hosting
andorra hosting
armenia web hosting
australia web hosting
Excellent post...very useful...
ReplyDeletepython training in chennai
internships in hyderabad for cse 2nd year students
online inplant training
internships for aeronautical engineering students
kaashiv infotech internship review
report of summer internship in c++
cse internships in hyderabad
python internship
internship for civil engineering students in chennai
robotics course in chennai
I am confident you've got a great enthusiast following there.
ReplyDeletetop 10 website design company
This comment has been removed by the author.
ReplyDeleteTheir project managers logo designer companies were particularly experienced
ReplyDeleteIt’s those tales which end up being the inspiration for his or her visual details. The folks would be crucial. weed measurements
ReplyDeleteMua vé máy bay tại Aivivu, tham khảo
ReplyDeletevé máy bay đi Mỹ khứ hồi
vé máy bay từ mỹ về việt nam giá bao nhiêu
Vé máy bay từ Nhật Bản về Việt Nam
vé máy bay giá rẻ từ Canada về Việt Nam
This comment has been removed by the author.
ReplyDeleteThis post is so helpfull and informative.keep updating with more information...
ReplyDeleteIOS Language
IOS Programming
This post is so interactive and informative.keep update more information...
ReplyDeleteAWS Training in Tambaram
AWS Training in Chennai
Unless they (and you) have had their website reviewed, analyzed and modified by a reputable Internet marketing service or consultant, then it is probably not optimized press org
ReplyDeleteIn order to execute successful SEO it makes sense to investigate where your problem areas lie and what needs immediate attention. hbci com
ReplyDeleteTheir Insurance policies have Insurance policies. Obamacare does mandate a range of obligatory health-Insurance benefits, but most of them, like mental health and pregnancy coverage, would likely have already come standard on a big employer plan like AOL's. What Is A Government Employees Insurance Company
ReplyDelete