python scapyの使用概要
6089 ワード
基本コマンド
ls() List all available protocols and protocol options lsc() List all available scapy command functions conf Show/set scapy configuration parameters
パケットの生成
パケットの表示
アドレスと値の指定(Specifying Addresses and Value)
IP値Explicit IP address(use quotation marks)の指定
ドメイン名DNS name to be resolved at time of transmissionの指定
IPとmac Random addresses with RandIP()and RandMAC()をランダムに生成
指定TTL範囲Set a range of numbers to be used(template)
パケットの送信(Sending Packets)
send(pkt,inter=0,loop=0,count=1,iface=N)送信3層パケット(Send one or more packets at layer three)sendp(pkt,inter=0,loop=0,count=1,iface=N)送信2層パケット(Send one or more packets at layer two)sendpfast(pkt,pps=N,mbps=N,loop=0,iface=N)Send packets much faster at layer two
パケットの送受信(Sending and Receiving Packets)
sr(pkt, filter=N, iface=N), srp(…) Send packets and receive replies sr1(pkt, inter=0, loop=0, count=1, iface=N), srp1(…) Send packets and return only the first reply srloop(pkt, timeout=N, count=N), srploop(…) Send packets in a loop and print each reply
嗅覚バッグ
sniff(count=0, store=1, timeout=N) Record packets off the wire; returns a list of packets when stopped
ls() List all available protocols and protocol options lsc() List all available scapy command functions conf Show/set scapy configuration parameters
パケットの生成
# Setting protocol fields
>>> ip=IP(src="10.0.0.1")
>>> ip.dst="10.0.0.2"
# Combining layers
>>> l3=IP()/TCP()
>>> l2=Ether()/l3
# Splitting layers apart
>>> l2.getlayer(1)
0 proto=tcp |>
>>> l2.getlayer(2)
パケットの表示
# Show an entire packet
>>> (Ether()/IPv6()).show()
###[ Ethernet ]###
dst= ff:ff:ff:ff:ff:ff
src= 00:00:00:00:00:00
type= 0x86dd
###[ IPv6 ]###
version= 6
tc= 0
fl= 0
plen= None
nh= No Next Header
hlim= 64
src= ::1
dst= ::1
# Show field types with default values
>>> ls(UDP())
sport : ShortEnumField = 1025 (53)
dport : ShortEnumField = 53 (53)
len : ShortField = None (None)
chksum : XShortField = None (None)アドレスと値の指定(Specifying Addresses and Value)
IP値Explicit IP address(use quotation marks)の指定
>>> IP(dst="192.0.2.1")ドメイン名DNS name to be resolved at time of transmissionの指定
>>> IP(dst="example.com")# IP network (results in a packet template)
>>> IP(dst="192.0.2.0/24")IPとmac Random addresses with RandIP()and RandMAC()をランダムに生成
>>> IP(dst=RandIP())
>>> Ether(dst=RandMAC())指定TTL範囲Set a range of numbers to be used(template)
>>> IP(ttl=(1,30))
# Random numbers with RandInt() and RandLong()
>>> IP(id=RandInt())パケットの送信(Sending Packets)
send(pkt,inter=0,loop=0,count=1,iface=N)送信3層パケット(Send one or more packets at layer three)sendp(pkt,inter=0,loop=0,count=1,iface=N)送信2層パケット(Send one or more packets at layer two)sendpfast(pkt,pps=N,mbps=N,loop=0,iface=N)Send packets much faster at layer two
>>> send(IP(dst="192.0.2.1")/UDP(dport=53))
.
Sent 1 packets.
>>> sendp(Ether()/IP(dst="192.0.2.1")/UDP(dport=53))
.
Sent 1 packets.パケットの送受信(Sending and Receiving Packets)
sr(pkt, filter=N, iface=N), srp(…) Send packets and receive replies sr1(pkt, inter=0, loop=0, count=1, iface=N), srp1(…) Send packets and return only the first reply srloop(pkt, timeout=N, count=N), srploop(…) Send packets in a loop and print each reply
>>> srloop(IP(dst="packetlife.net")/ICMP(), count=3)
RECV 1: IP / ICMP 174.143.213.184 > 192.168.1.140
RECV 1: IP / ICMP 174.143.213.184 > 192.168.1.140
RECV 1: IP / ICMP 174.143.213.184 > 192.168.1.140嗅覚バッグ
sniff(count=0, store=1, timeout=N) Record packets off the wire; returns a list of packets when stopped
# Capture up to 100 packets (or stop with ctrl-c)
>>> pkts=sniff(count=100, iface="eth0")
>>> pkts
92 UDP:7 ICMP:1 Other:0>