Scapy常用操作和命令(2)

最新推荐文章于 2023-05-30 11:17:52 发布

远行的风

最新推荐文章于 2023-05-30 11:17:52 发布

阅读量3.4k

点赞数 88

分类专栏：计算机网络文章标签： Scapy 命令操作网络

版权声明：本文为博主原创文章，遵循 CC 4.0 BY-SA 版权协议，转载请附上原文出处链接和本声明。

本文链接：https://blog.csdn.net/qwertyupoiuytr/article/details/54674511

版权

计算机网络专栏收录该内容

19 篇文章 5 订阅

订阅专栏

send方法用来在3层发送报文

>>> send(IP(dst="1.2.3.4")/ICMP())

.

Sent 1 packets.

使用loop参数循环发送（Ctrl+C终止），inter表示发送时间间隔

>>> send(IP()/ICMP(),loop=1,inter=0.5)

......^C

Sent 6 packets.

sendp方法用来在2层发送报文

>>> sendp(Ether()/IP(dst="1.2.3.4",ttl=(1,4)), iface="eth1")

....

Sent 4 packets.

>>> sendp("I'm travelling on Ethernet", iface="eth1", loop=1, inter=0.2)

................^C

Sent 16 packets.

sr1方法在3层发送报文并返回第一个响应报文

>>> ans=sr1(IP()/ICMP())

Begin emission:

Finished to send 1 packets.

....................................................................................................^C

Received 100 packets, got 0 answers, remaining 1 packets

>>> ans=sr1(IP(dst="www.baidu.com")/ICMP())

Begin emission:

....Finished to send 1 packets.

..*

Received 7 packets, got 1 answers, remaining 0 packets

sr方法在3层发送报文并返回所有响应报文

>>> ans, unans=sr(IP(dst="www.baidu.com", src="172.31.100.0/24")/ICMP())

Begin emission:

......................................................................................................................................................................................................................................................................................................*..................................................................*.....................................................................................................................Finished to send 256 packets.

...........................................................................................................................................................................................................................................^C

Received 714 packets, got 2 answers, remaining 254 packets

>>> ans

<Results: TCP:0 UDP:0 ICMP:2 Other:0>

>>> unans

<Unanswered: TCP:0 UDP:0 ICMP:254 Other:0>

srp和srp1方法为sr和sr1方法对应的2层方法

>>> ans, unans=srp(Ether()/IP(dst="www.baidu.com", src="172.31.100.0/24")/ICMP())

.Begin emission:

.......................................................................................................................................................................................................................................................*..Finished to send 256 packets.

.............................................................................................................................................................................................................................................................................................................................^C

Received 568 packets, got 1 answers, remaining 255 packets

srloop方法循环发送3层报文并打印结果

>>> ans, unans=srloop(IP(dst="www.baidu.com")/ICMP())

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

RECV 1: IP / ICMP 119.75.218.70 > 172.31.100.222 echo-reply 0 / Padding

^C

Sent 8 packets, received 8 packets. 100.0% hits.

>>> ans

<Results: TCP:0 UDP:0 ICMP:8 Other:0>

srploop方法循环发送2层报文并打印结果

>>> ans, unans=srloop(Ether()/IP(dst="www.baidu.com")/ICMP())

WARNING: Mac address to reach destination not found. Using broadcast.

fail 1: Ether / IP / ICMP 172.31.100.222 > 119.75.217.109 echo-request 0

WARNING: Mac address to reach destination not found. Using broadcast.

fail 1: Ether / IP / ICMP 172.31.100.222 > 119.75.217.109 echo-request 0

WARNING: Mac address to reach destination not found. Using broadcast.

fail 1: Ether / IP / ICMP 172.31.100.222 > 119.75.217.109 echo-request 0

WARNING: Mac address to reach destination not found. Using broadcast.

fail 1: Ether / IP / ICMP 172.31.100.222 > 119.75.217.109 echo-request 0

WARNING: Mac address to reach destination not found. Using broadcast.

fail 1: Ether / IP / ICMP 172.31.100.222 > 119.75.217.109 echo-request 0

WARNING: Mac address to reach destination not found. Using broadcast.

send...

Sent 5 packets, received 0 packets. 0.0% hits.

srflood方法使用flooding的方式快速发包并接收回包

>>> ans, unans=srflood(IP(dst="www.baidu.com")/ICMP())

IP / ICMP 119.75.217.109 > 172.31.100.222 echo-reply 0 / Padding

IP / ICMP 119.75.217.109 > 172.31.100.222 echo-reply 0 / Padding

IP / ICMP 119.75.217.109 > 172.31.100.222 echo-reply 0 / Padding

IP / ICMP 119.75.217.109 > 172.31.100.222 echo-reply 0 / Padding

IP / ICMP 119.75.217.109 > 172.31.100.222 echo-reply 0 / Padding

IP / ICMP 119.75.217.109 > 172.31.100.222 echo-reply 0 / Padding

……

>>> ans

<Results: TCP:0 UDP:0 ICMP:1 Other:0>

>>> unans

<Unanswered: TCP:0 UDP:0 ICMP:255 Other:0>

>>> unans.summary()

Ether / IP / ICMP 172.31.100.84 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.78 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.71 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.104 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.98 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.64 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.3 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.36 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.117 > 119.75.218.70 echo-request 0

Ether / IP / ICMP 172.31.100.30 > 119.75.218.70 echo-request 0

……

发包的方法可以使用下面的3个参数

inter：定义发包时相邻两个包的时间间隔（单位s）

retry：定义重传次数（可正可负，例如3表示重传3次，-3表示scapy会尝试依次重传unanswered直到没有任何新的answer报文，但是最多重试3次）

timeout：定义认为丢包的timeout时间（单位s）

>>> ans, unans = sr(IP(src="172.31.100.149/30", dst="www.baidu.com")/TCP(dport=80), inter=0.5, retry=-3, timeout=1)

.Begin emission:

....................................................................................................................................................................................*...............................................................................................................................................................................................................................................................................................Finished to send 4 packets.

..............................................................................................................................................................................................................................Begin emission:

...................................................................................................................................................................................................................................................................................................................................................Finished to send 3 packets.

.......................................................................................................................................................................................................................................Begin emission:

.................................................................................................................................................................................................................................................................................................................................................................................Finished to send 3 packets.

.........................................................................................................................................................................................................................Begin emission:

....................................................................................................................................................................................................................................................................................................................................Finished to send 3 packets.

..............................................................................................................................................................................................................................

Received 2393 packets, got 1 answers, remaining 3 packets

fuzz方法可以修改对象中不参与计算的属性的默认值（例如校验和）为一个随机值，通过fuzz方法可以在循环中快速构建大量随机报文。

>>> send(IP(dst="target")/fuzz(UDP()/NTP(version=4)),loop=1)

................^C

Sent 16 packets.

关注

88
点赞
踩
7

收藏

觉得还不错? 一键收藏
0
评论
Scapy常用操作和命令(2)

send方法用来在3层发送报文>>> send(IP(dst="1.2.3.4")/ICMP()).Sent 1 packets.使用loop参数循环发送（Ctrl+C终止），inter表示发送时间间隔>>> send(IP()/ICMP(),loop=1,inter=0.5)......^CSent
复制链接

扫一扫

专栏目录

远行的风 CSDN认证博客专家 CSDN认证企业博客

码龄15年

266: 原创

3万+: 周排名

198万+: 总排名

123万+: 访问

: 等级

2万+: 积分

345: 粉丝

1万+: 获赞

108: 评论

1383: 收藏

私信

关注

热门文章

分类专栏

最新评论

手把手教你如何将图片“嵌入”网页中
2201_75738252: 引用「in_len」这个变量是什么意思
手把手教你在Photoshop中使用曲线工具
大俊比: 输入值比输出值大，应该是位于对角线下方吧，怎么会是上方呢？
恼人的Windows 10语言栏设置
Mitom1: 我以前设置了某个东西去掉了中/英这个图标，这样切换到美式键盘也不会动了。最近手贱点了一下搜狗的“状态栏嵌入语言栏”，结果中/英回来了而且再关掉也去不掉了
Linux中audit日志的使用方法
qq_31111327: 帮大忙了，每天iptable规则都会被清掉，头发都扣掉了也没发现是谁干的，最后通过audit日志定位到操作时间，最后发现开发写了操作iptables的代码
Scapy Sniffer的filter语法
是雪糕味的小太阳啦: 您好，我规定了filter没有起作用是为什么呢，可以正常抓包，但是什么ip都抓，好困惑

您愿意向朋友推荐“博客详情页”吗？

强烈不推荐
不推荐
一般般
推荐
强烈推荐

提交

最新文章

目录

评论

被折叠的条评论为什么被折叠?

到【灌水乐园】发言

查看更多评论

添加红包

成就一亿技术人!

hope_wisdom

发出的红包

实付元

使用余额支付

点击重新获取

扫码支付

钱包余额 0

抵扣说明：

1.余额是钱包充值的虚拟货币，按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载，可以购买VIP、付费专栏及课程。