You're reading from Python for Security and Networking Leverage Python modules and tools in securing your network and applications

Product type Paperback

Published in Jun 2023

Publisher Packt

ISBN-13 9781837637553

Length 586 pages

Edition 3rd Edition

Languages

Python

Concepts

Information Security

Author (1):

José Manuel Ortega

View More author details

Table of Contents (23) Chapters

Preface

1. Section 1: Python Environment and System Programming Tools

2. Working with Python Scripting FREE CHAPTER

3. System Programming Packages

4. Section 2: Network Scripting and Packet Sniffing with Python

5. Socket Programming

6. HTTP Programming and Web Authentication

7. Analyzing Network Traffic and Packet Sniffing

8. Section 3: Server Scripting and Port Scanning with Python

9. Gathering Information from Servers with OSINT Tools

10. Interacting with FTP, SFTP, and SSH Servers

11. Working with Nmap Scanner

12. Section 4: Server Vulnerabilities and Security in Web Applications

13. Interacting with Vulnerability Scanners

14. Interacting with Server Vulnerabilities in Web Applications

15. Obtain Information from Vulnerabilities Databases

16. Section 5: Python Forensics

17. Extracting Geolocation and Metadata from Documents, Images, and Browsers

18. Python Tools for Brute-Force Attacks

19. Cryptography and Code Obfuscation

20. Assessments – Answers to the End-of-Chapter Questions

21. Other Books You May Enjoy

22. Index

Port scanning and traceroute with scapy

In the same way we do port-scanning with tools like nmap, we can also execute a simple port scanner that tells us if a specific host and ports, are open, closed or filtered with scapy.

Port scanning with scapy

In the following example, we define the analyze_port() method, which provides the host, port, and verbose_level parameters. This method is responsible for sending a TCP packet and waiting for its response. When processing the response, the objective is to check within the TCP layer if the received flag corresponds to a port in an open, closed, or filtered state. You can find the following code in the scapy_port_scan.py file inside the scapy's port_scanning folder:

import sys 
from scapy.all import *
import logging
logging.getLogger("scapy.runtime").setLevel(logging.ERROR)
def analyze_port(host, port, verbose_level):
    print("[+] Scanning port %s" % port)
    packet = IP(dst=host)/TCP(dport=port,flags...