Utilisateur:PierreLalet/Scapy
De Wikidroids
This page presents my contributions to Scapy. I'm neither the author nor the maintainer of this tool, and this is not the official page of Scapy. This page only provides new patches that are not integrated in Scapy and a few comments about it.
You should start by reading the Scapy official page, and download the work-in-progress version.
The latest version is also here, and sometimes this one is more up-to-date. This is the version the above patches are supposed to apply to.
Tools & patches
Once again, the patches on this page are not included in Scapy, so don't bother the author if they don't work / are broken / whatever. Instead, contact me.
A nice (!) tool : Scapereal is an ethereal-like packet list viewer for Scapy. Download it, run Scapy as usual, and type : ">>> from scapereal import *". You can now use "ethereal(pl)", where "pl" is a PacketList. You'll need PyGTK to use it.
Here is a little patch for Scapy 0.9.17.92, which :
- adds mysummary() method to Sebek* classes, and takes in account a change from the Honeynet Project (Sebek protocol version 2 is now know as version 3 ; this was new in 0.9.17.92-patch1).
- parses some files in /etc to get IP_PROTOS, (TCP,UDP)_SERVICES and ETHER_TYPES (it uses the usual files /etc/protocols and /etc/services for IP_PROTOS and (TCP,UDP)_SERVICES respectively, and the file /etc/ethertypes from the ebtables project for the ETHER_TYPES).
- updates mysummary() methods for Ether(), Dot1Q(), IP(), UDP() and TCP() to take advantage of the *EnumFields (this is new in 0.9.17.92-patch2).
- fixes a bug when "netsat -rn" output has a field for the MTU (requiered under OpenBSD and NetBSD).
*BSD / MacOS
Scapy now runs under FreeBSD and MacOS X. It has been successfully tested under MacOS X 'Tiger' with the Python shipped with the 'developer tools' ; I only had to add the readline.so (for example, you can just gunzip this one and move it to your 'site-packages' directory).
Under OpenBSD and NetBSD, you need the patch-0.9.17.92-3.
If you plan to run Scapy under *BSD / MacOS, may-be this doc could be usefull.
