scapya-python-tool-for-security-testing-jcsb-1000182.pdf资源-CSDN文库

安全测试

Python

需积分: 5 69 浏览量 2019-12-18 14:07:28 上传评论收藏 795KB PDF 举报

资源推荐

资源详情

资源评论

Volume 8(3) 140-159 (2015) - 140

J Comput Sci Syst Biol

ISSN: 0974-7230 JCSB, an open access journal

Research Article Open Access

Bansal and Bansal, J Comput Sci Syst Biol 2015, 8:3

DOI: 10.4172/jcsb.1000182

Research Article

Open Access

Keywords: Security testing; Python; Scapy; Flaws

Introduction

Security is dened as “No unauthorized Access of information”.

Security is very essential to maintain the integrity of System [1,2].

Security Testing is the rst step to detect aws in the security measures

of System [3,4]. Security of System can be measured by following

criteria:

1. Condentiality: It denes certain rules and constraints to

access any important information

2. Integrity: Integrity means correctness of information. If the

integrity of information is reserved then quality of information will

denitely increased.

3. Authentication: Authentication is the process of identifying

identity of Person. is process is commonly done through username

and password.

Authorization: Authorization means access rights. Access

Rights means whether user can read, write, and execute the le or

whether he has right to access the resource or not.

5. Non-repudiation: In reference to digital security, non-

repudiation means to ensure that a transferred message has been sent

by correct sender and received by correct receiver. is is done mainly

through digital certicates to ensure integrity of sender and receiver.

Security testing terminologies

1. Unit Testing: Testing is the strategy to detect faults in

the System. Unit testing means testing each line in a component or

modules.

2. Functional Testing: Functional Testing is used to measure

the quality of functional components of System.

3. System Testing: System Testing is used to measure the

eectiveness and eciency of whole System within real world

constraints.

Introduction to python

Python is fast, reusable and micro threaded language. Its byte

code generated is reusable in nature. at are 5 versions of Python

are: CPyhton, Jython, IronPython, Stackless and PyPy. All versions

have their own dierent features. But the standard among all of them

is CPython. Jython is python language with java byte code features,

IronPython is a Python language enables with dotnet framework,

Stackless is used for concurrency and PyPy has greater speed execution

than CPython. Its extension is .py normally.

Introduction to scapy

Scapy is a tool for manipulating interactive packets. is tool is

totally based on Python language. Python is an easy to learn, powerful

programming language [5,6]. It data structures are highly ecient and

bases on object oriented Programming. Python’s syntax is simple and

dynamic in nature, incorporated with feature of interpretation; make

it an ideal language for scripting and rapid application development

in many areas on most platforms. Scapy tool has the capability of

encoding, decoding, sending, matching senders and receivers and

many more [7,8].

Its interface is Python. Scapy tool is more powerful

tools than rewalls. It can detect faults in the security systems that

rewalls cannot detect.

Scapy interactive sessions can be started by putting undersigned

command at the shell prompt:

$ sudo scapy

Welcome to Scapy (2.0.1-dev)

>>:

C:\>scapy

INFO: No IPv6 support in kernel

WARNING: No route found for IPv6 destination :: (no default

route?)

Welcome to Scapy (2.0.1-dev)

>>>

For example:-

*Corresponding author: Shipra Bansal, Department of Computer Applications,

Lovely Professional University, Jalandhar, India, Tel: 9653450743; E-mail:

shipra_goelred@yahoo.co.in

Received

January 26, 2015; Accepted March 30, 2015; Published March 31,

2015

Citation: Bansal S, Bansal N (2015) Scapy – A Python Tool For Security Testing. J

Comput Sci Syst Biol 8: 140-159. doi:10.4172/jcsb.1000182

the terms of the Creative Commons Attribution License, which permits unrestricted

use, distribution, and reproduction in any medium, provided the original author and

source are credited.

Abstract

Security Testing is the essential method of any information System and this method is used to detect aws in the

security measures in an Information System which protect the data from an unauthorized access. Passing through

the Security testing method does not ensure that aws are not present in the System. Python is a new emerging

Programming language. This research paper looks into the tool named Scapy which is based on Python language;

lists out some vital commands, explanation with examples and uses of Security Testing. This research paper, being

introductory one tries to give a brief description and understandable usage of the security Testing tool.

Scapy–A Python Tool For Security Testing

Shipra Bansal

* and Nitin Bansal

Department of Computer Applications, Lovely Professional University, Jalandhar, India

Department of Management, Lovely Professional University, Jalandhar, India

Journal of

Computer Science & Systems Biology

ISSN: 0974-7230

Citation: Bansal S, Bansal N (2015) Scapy – A Python Tool For Security Testing. J Comput Sci Syst Biol 8: 140-159. doi:10.4172/jcsb.1000182

Volume 8(3) 140-159 (2015) - 141

J Comput Sci Syst Biol

ISSN: 0974-7230 JCSB, an open access journal

#! /usr/bin/env python

import sys

from scapy.all import sr1,IP,ICMP

p=sr1(IP(dst=sys.argv[1])/ICMP())

if p:

p.show()

is example demonstrates dissected return packets. is example

has taken a name or an IP addresses as a rst parameter, sends an ICMP

echo request and displays dissected packets.

is tool is used to discover invalid frames, sent by a sender,

injecting 802.11 frames and VLAN hopping.

Some of the important commands of scapy:

1. Ls(): lists all supported protocol layers .

2. Lsc(): list all user commands

3. Cong: Conguration about object.

For example:

1. Ls():

>>> from scapy.all import *

WARNING: No route found for IPv6 destination :: (no default

route?)

>>> ls()

ARP : ARP

ASN1_Packet : None

BOOTP : BOOTP

CookedLinux : cooked linux

DHCP : DHCP options

DHCP6 : DHCPv6 Generic Message)

DHCP6OptAuth : DHCP6 Option - Authentication

DHCP6OptBCMCSDomains : DHCP6 Option - BCMCS

Domain Name List

DHCP6OptBCMCSServers : DHCP6 Option - BCMCS

Addresses List

DHCP6OptClientFQDN : DHCP6 Option - Client FQDN

DHCP6OptClientId : DHCP6 Client Identier Option

DHCP6OptDNSDomains : DHCP6 Option - Domain

Search List option

DHCP6OptDNSServers : DHCP6 Option - DNS Recursive

Name Server

DHCP6OptElapsedTime : DHCP6 Elapsed Time Option

DHCP6OptGeoConf : All the object list TCP:

2. Lsc():

>>> lsc()

arpcachepoison : Poison target’s cache with (your

MAC,victim’s IP) couple

arping : Hosts which are alive sends ARP

requests.

bind_layers : Two Layers are binded on some

specic elds’ values

corrupt_bits : Sting get ipped by given

percentage or number of bits corrupt_bytes : Sting get ipped by given

percentage or number of bits

defrag : defrag(plist) -> ([not

fragmented], [defragmented],

defragment : defrag(plist) -> plist

defragmented as much as possible

dyndns_add : DNS send a message specied

by its name to a name server

dyndns_del : DNS send a del message

specied by its name to a name server

etherleak : Etherleak aw is exploited

fragment : Large size IP datagram is fragmented

fuzz : Transform a layer into a fuzzy

layer by replacing some default values by random objects

getmacbyip : Return MAC address

corresponding to a given IP address

hexdi : Show dierences between 2

binary strings

hexdump : Coverts all dump formats into

hexadecimal format

hexedit : -Do- is_promisc : Try to

guess if target is in Promisc mode. e target is provided by its ip.

linehexdump : Represent all dump material

into line hexadecimal format

ls : List available layers, or infos on

a given layer

promiscping : Send ARP who-has requests to

determine which hosts are in promiscuous mode

rdpcap : Read a pcap le and return a

packet list

send : Send packets at layer 3

sendp : Send packets at layer 2

sendpfast : Send packets at layer 2 using tc

preplay for performance

sni : Sni packets

split_layers : Split 2 layers previously bound [7]

sr : Send and receive packets at layer 3

sr1 : Send packets at layer 3 and return

only the rst answer

srbt : Bluetooth is used for sending and

receiving

srbt1 : Bluetooth socket is used for

sending and receiving 1

packet

srood : layer 3 is used for ooding and

receiving the packets.

srloop : Send a packet at layer 3 in loop

and print the answer each time

Citation: Bansal S, Bansal N (2015) Scapy – A Python Tool For Security Testing. J Comput Sci Syst Biol 8: 140-159. doi:10.4172/jcsb.1000182

Volume 8(3) 140-159 (2015) - 142

J Comput Sci Syst Biol

ISSN: 0974-7230 JCSB, an open access journal

e basic features of sending and receiving packets should still

work, though.

Interactive tutorial: is section will show you several of Scapy’s

features. Just open a Scapy session as shown above and try the examples

yourself.

First steps: Let’s build a packet and play with it:

>>> a=IP (ttl=10)

>>> a

< IP ttl=10 |>

>>> a.src

’127.0.0.1’

>>> a.dst=”192.168.1.1”

>>> a

< IP ttl=10 dst=192.168.1.1 |>

>>> a.src

’192.168.8.14’

>>> del(a.ttl)

>>> a

< IP dst=192.168.1.1 |>

>>> a.ttl

Stacking layers

e/operator has been used as a composition operator between

two layers. When doing so, the lower layer can have one or more of its

defaults elds overloaded according to the upper layer. (You still can

give the value you want). A string can be used as a raw layer.

>>> IP()

<IP |>

>>> IP()/TCP()

>>> Ether()/IP()/TCP()

>>> IP()/TCP()/”GET / HTTP/1.0\r\n\r\n”

<IP frag=0 proto=TCP |<TCP |<Raw load=’GET / HTTP/1.0\r\n\

r\n’ |>>>

>>> Ether()/IP()/IP()/UDP()

<Ether type=0x800 |<IP frag=0 proto=IP |<IP frag=0 proto=UDP

|<UDP |>>>>

>>> IP(proto=55)/TCP()(Figure 1)

Each packet can be build or dissected (note: in Python _

(underscore) is the latest result):

>>> str(IP())

srp : Layer 2 is used for sending and

receiving the packets

srp1 : Send and receive packets at layer 2

and return only the rst answer

srpood : Layer 2 is ooded by packets.

srploop : Send a packet at layer 2 in loop

and print the answer each time

traceroute : TCP is instantly trace route [9]

tshark : pkt.show() is used to sni and

print the packets.

wireshark : It is used to run a list of packets

wrpcap : pcap le contains a list of

packets.

How scapy works

Scapy has some specic goals and these tools are made for it. ere

should be not any deviation from these goals. If dierent goals are

needed from other tools, there is need to develop dierent applications

in order to complete that needs. Other tools cannot dierentiate

suciently between encoding and decoding. Other tools are confused

in the sense that which machines are good for encoding and decoding.

Even they do not able to decode sucient information which they

receive. For instance, is there any tool that reports the padding?

Scapy tries to overcome these problems. A exible model that

works in all arbitrary limits is Scapy. One is free to put any value that

is required in any eld and stack them as one wants. Infact when

application needs are dierent for dierent applications and writing

code dierently for dierent needs is totally waste of time, scapy can

fulll all the applications needs at same time. Interpretation power

of scapy is very strong. It is able to interpret the information aer

decoding eciently.

Usage

Starting scapy: Scapy’s interactive shell is run in a terminal session.

Root privileges are needed to send the packets, so we’re using sudo here:

$ sudo scapy

Welcome to Scapy (2.0.1-dev)

>>>

On Windows, please open a command prompt (cmd.exe) and

make sure that you have administrator privileges:

C:\>scapy

INFO: No IPv6 support in kernel

WARNING: No route found for IPv6 destination :: (no default

route?)

Welcome to Scapy (2.0.1-dev)

>>>

If you do not have all optional packages installed, Scapy will inform

you that some features will not be available:

INFO: Can’t import python gnuplot wrapper . Won’t be able to

plot.

INFO: Can’t import PyX. Won’t be able to use psdump() or

pdfdump().

剩余19页未读，继续阅读

评论收藏

内容反馈

橘子就酱

粉丝: 20
资源: 5

scapya-python-tool-for-security-testing-jcsb-1000182.pdf

scapy网络安全编程

scapy官方文档（带目录）

scapy for windows- python

建筑消防设施检测仪器设备操作规程完整.doc

文华财经指标公式源码最赚钱的短线期货指标公式源码.doc

建筑消防设施检测仪器设备操作规程.doc

添加和删除数据

python大作业 含爬虫、数据可视化、地图、报告、及源码（2016-2021全国各地区粮食产量）.rar

《点燃我温暖你》中李峋的同款爱心代码

Python金融量化的高级库：TA-Lib-0.4.24（包含python3.7、3.8、3.9、3.10的32位和64位版本）

大麦网抢票脚本【Python脚本】

人脸识别系统OpenCV+dlib+python（含数据库）Pyqt5界面设计 项目源码 毕业设计

Python教程2020版 完全入门 达到Python工程师水平 笔记+代码+课件+资料

Python学习笔记(干货) 中文PDF完整版.pdf

人体姿态检测

抢购haiwei.rar

Python 八股文.pdf

Python基于机器学习实现的股票价格预测、股票预测源码+数据集，机器学习大作业

shape_predictor_68_face_landmarks.zip

计算机二级python真题题库（题目+答案）电子版笔记2

这是一款用于破解wifi密码的软件

爱心代码 李峋同款爱心等免费下载 exe、py、html格式

Tensorflow-gpu版本缺少的dll文件

python-3.8.20-amd64.exe

python反编译工具pycdc.exe，python反汇编工具pycds.exe

华为商城抢购huawei mate xt非凡大师脚本

大麦抢票+源代码+辅助工具+详细文档教程

Microsoft C++ Build Tools

2022泰迪杯数据分析技能赛B题代码 Jupyter Notebook

TA-Lib的whl文件

最新资源

python大作业含爬虫、数据可视化、地图、报告、及源码（2016-2021全国各地区粮食产量）.rar

人脸识别系统OpenCV+dlib+python（含数据库）Pyqt5界面设计项目源码毕业设计

Python教程2020版完全入门达到Python工程师水平笔记+代码+课件+资料

爱心代码李峋同款爱心等免费下载 exe、py、html格式