You're reading from Python for Security and Networking Leverage Python modules and tools in securing your network and applications

Product type Paperback

Published in Jun 2023

Publisher Packt

ISBN-13 9781837637553

Length 586 pages

Edition 3rd Edition

Languages

Python

Concepts

Information Security

Author (1):

José Manuel Ortega

View More author details

Table of Contents (23) Chapters

Preface

1. Section 1: Python Environment and System Programming Tools

2. Working with Python Scripting FREE CHAPTER

3. System Programming Packages

4. Section 2: Network Scripting and Packet Sniffing with Python

5. Socket Programming

6. HTTP Programming and Web Authentication

7. Analyzing Network Traffic and Packet Sniffing

8. Section 3: Server Scripting and Port Scanning with Python

9. Gathering Information from Servers with OSINT Tools

10. Interacting with FTP, SFTP, and SSH Servers

11. Working with Nmap Scanner

12. Section 4: Server Vulnerabilities and Security in Web Applications

13. Interacting with Vulnerability Scanners

14. Interacting with Server Vulnerabilities in Web Applications

15. Obtain Information from Vulnerabilities Databases

16. Section 5: Python Forensics

17. Extracting Geolocation and Metadata from Documents, Images, and Browsers

18. Python Tools for Brute-Force Attacks

19. Cryptography and Code Obfuscation

20. Assessments – Answers to the End-of-Chapter Questions

21. Other Books You May Enjoy

22. Index

Reading pcap files with scapy

In this section, you will learn the basics of reading pcap files. PCAP (Packet CAPture) refers to the API that allows you to capture network packets for processing. The PCAP format is standard and is used by well-known network analysis tools such as TCPDump, WinDump, Wireshark, TShark, and Ettercap. Scapy incorporates two functions to work with PCAP file, which will allow us to read and write about them:

rdcap(): Reads and loads a .pcap file.
wdcap(): Writes the contents of a list of packages in a .pcap file.

With the rdpcap() function, we can read a pcap file and get a list of packages that can be handled directly from Python:

>>> packets = rdpcap('packets.pcap')
>>> packets.summary()
Ether / IP / TCP 10.0.2.15:personal_agent > 10.0.2.2:9170 A / Padding
Ether / IP / TCP 10.0.2.15:personal_agent > 10.0.2.2:9170 PA / Raw
Ether / IP / TCP 10.0.2.2:9170 > 10.0.2.15:personal_agent A
Ether...

The rest of the chapter is locked

You're reading from Python for Security and Networking Leverage Python modules and tools in securing your network and applications

Table of Contents (23) Chapters

Reading pcap files with scapy

Authors (2)

Personalised recommendations for you

You're reading from Python for Security and Networking Leverage Python modules and tools in securing your network and applications

Table of Contents (23) Chapters

Reading pcap files with scapy

Unlock this book and the full library FREE for 7 days

Authors (2)

Personalised recommendations for you