SANS Penetration Testing

SANS Pen Test Cheat Sheet: Scapy

One of my favorite tools for fine-grained interactions with target systems during penetration testing is the mighty Scapy. While other tools are indispensable for scanning large numbers of machines, Scapy is like a fine-grained scalpel for manipulating a single target in a myriad of cool ways. With all kinds of features, Scapy just rocks.

In fact, a few years ago, I tweeted thusly:

niBXBKgXTTo that end, just a couple weeks ago, we released a Scapy cheat sheet, covering the items we use Scapy for in the SANS Security 560 course on Network Pen Testing and Ethical Hacking, plus some additional tips and tricks. Enjoy!

scapy

If you like this kinda thing, plus a whole bunch of other practical, hands-on pen testing techniques (including recon, scanning, exploitation, post exploitation, and more), please do check out the SANS Security 560 course. I've recently added great new stuff on recon-ng, Anti-Virus evasion, PowerShell for post-exploitation, and much more!

Hope to see you there!

I am teaching SEC560: Network Penetration Testing and Ethical Hacking at SANS Pen Test Austin in March 2018.

-Ed Skoudis.
SANS Instructor & Pen Test Curriculum Lead
Founder, Counter Hack

SANS Pen Test Austin 2018 - Training Event:

800x418_PenTest-Austin-2018_No-EB

  • Choose from 12 world-class training courses w/ our best instructors!
  • Play in (3) Nights of NetWars
  • Join a team as you hack/defend SANS CyberCity
  • Enjoy a special night of networking and fun for all attendees
  • Earn up to (5) SANS Pen Test Challenge Coins during Coin-A-Palooza
  • March 19 - 24, 2018 - Austin, TX
  • Learn more: www.sans.org/pentest

Post a Comment






Captcha


* Indicates a required field.