SANS Penetration Testing

SANS Pen Test Cheat Sheet: Scapy

One of my favorite tools for fine-grained interactions with target systems during penetration testing is the mighty Scapy. While other tools are indispensable for scanning large numbers of machines, Scapy is like a fine-grained scalpel for manipulating a single target in a myriad of cool ways. With all kinds of features, Scapy just rocks.

In fact, a few years ago, I tweeted thusly:

niBXBKgXTTo that end, just a couple weeks ago, we released a Scapy cheat sheet, covering the items we use Scapy for in the SANS Security 560 course on Network Pen Testing and Ethical Hacking, plus some additional tips and tricks. Enjoy!

scapy

If you like this kinda thing, plus a whole bunch of other practical, hands-on pen testing techniques (including recon, scanning, exploitation, post exploitation, and more), please do check out the SANS Security 560 course. I've recently added great new stuff on recon-ng, Anti-Virus evasion, PowerShell for post-exploitation, and much more!

Hope to see you there!

-Ed Skoudis.
SANS Instructor & Pen Test Curriculum Lead
Founder, Counter Hack

SANS Online Training:

OLT_forBlogs

All SANS Online Training courses include:

  • Convenience and Flexibility
  • Subject-Matter Expert Support
  • Anytime, Anywhere access for four or more months
  • Save costs and time - no travel necessary

Test Drive any of 30 SANS courses today at www.sans.org/demo

"I love the material, I love the SANS Online delivery, and I want the entire industry to take these courses." - Nick Sewell, IIT

Post a Comment






Captcha


* Indicates a required field.