Results 1 to 5 of 5

Thread: Core Pcapy python modules ?

  1. #1
    Senior Member shamanvirtuel's Avatar
    Join Date
    Mar 2010
    Location
    Somewhere in the "Ex" human right country
    Posts
    2,988

    Default Core Pcapy python modules ?

    in my rest time, im involved in learning python and its interaction with network classes.......

    so i google it, and finally found the 2 open source projects from core (creators of core impact)

    called Pcapy (capture)
    & Impaket (python classes for packet analysis)

    here is a brief info about pcapy


    Pcapy is a Python extension module that interfaces with the libpcap packet capture library. Pcapy enables python scripts to capture packets on the network. Pcapy is highly effective when used in conjunction with a packet-handling package such as Impacket, which is a collection of Python classes for constructing and dissecting network packets.


    DOES ANYBODY INVOLDED IN PY HAD WORKED YET WITH THAT ?

    if so is it really easy to interacts between py scripts and pcapy modules for capturing packet on the fly and dumping them to files ?

    + does anybody use SPE ? the python editor integrated in bt ? just need a little info on how design process occurs in SPE ??

    thx
    Watch your back, your packetz will belong to me soon... xD

    BackTrack :
    Giving Machine Guns to Monkeys since 2006

  2. #2
    Member imported_blackfoot's Avatar
    Join Date
    Jun 2007
    Posts
    386

    Default scapy and pcapy

    Hi

    I read about it once but did not use it. I switched to the scapy function set (M. Biondi EADS) and import it direct into the python code. It is easy to use to dissect and repack but not well documented though I like it. I am finishing a big project with it at the moment using Dot11 and Ether.

    Yes I am starting to use SPE but I still prefer NEdit. I just type.
    Lux sit

  3. #3
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    Quote Originally Posted by shamanvirtuel View Post
    in my rest time, im involved in learning python and its interaction with network classes.......

    so i google it, and finally found the 2 open source projects from core (creators of core impact)

    called Pcapy (capture)
    & Impaket (python classes for packet analysis)

    here is a brief info about pcapy


    Pcapy is a Python extension module that interfaces with the libpcap packet capture library. Pcapy enables python scripts to capture packets on the network. Pcapy is highly effective when used in conjunction with a packet-handling package such as Impacket, which is a collection of Python classes for constructing and dissecting network packets.


    DOES ANYBODY INVOLDED IN PY HAD WORKED YET WITH THAT ?

    if so is it really easy to interacts between py scripts and pcapy modules for capturing packet on the fly and dumping them to files ?

    + does anybody use SPE ? the python editor integrated in bt ? just need a little info on how design process occurs in SPE ??

    thx
    I stumbled upon that a week ago when I was looking into Lorcon; I have it on my SuSE box but haven't played with it yet. I'm interested in seeing how it works as well, since py is awesome!!!
    dd if=/dev/swc666 of=/dev/wyze

  4. #4
    Senior Member shamanvirtuel's Avatar
    Join Date
    Mar 2010
    Location
    Somewhere in the "Ex" human right country
    Posts
    2,988

    Default

    lol...well let's go so .....

    nice to see im not alone to know that classes for network analysis

    we can do nice things with pcapy
    I Pcapy Module

    open_live
    open_offline
    lookupdev
    findalldevs
    compile

    II Reader Object Reference
    dispatch
    next
    setfilter
    getnet
    datalink
    getnonblock
    dump_open

    III Dumper Object
    dump

    IV Pkthdr Object
    getts

    V Bpf Object
    filter


    and with impacket once we have use pcapy for capture
    we can do for example a packet sniffer, have a look here ands see how the code become simple and logic :

    http://oss.coresecurity.com/impacket/sniff.py
    Watch your back, your packetz will belong to me soon... xD

    BackTrack :
    Giving Machine Guns to Monkeys since 2006

  5. #5
    Jenkem Addict imported_wyze's Avatar
    Join Date
    Jul 2007
    Posts
    1,543

    Default

    I'm going to spend some time to experiment this weekend... if you have any info, please post Shaman so I can get a good start!!
    dd if=/dev/swc666 of=/dev/wyze

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •