SANS Penetration Testing

SANS Pen Test Cheat Sheet: Scapy

One of my favorite tools for fine-grained interactions with target systems during penetration testing is the mighty Scapy. While other tools are indispensable for scanning large numbers of machines, Scapy is like a fine-grained scalpel for manipulating a single target in a myriad of cool ways. With all kinds of features, Scapy just rocks.

In fact, a few years ago, I tweeted thusly:

niBXBKgXTTo that end, just a couple weeks ago, we released a Scapy cheat sheet, covering the items we use Scapy for in the SANS Security 560 course on Network Pen Testing and Ethical Hacking, plus some additional tips and tricks. Enjoy!

scapy

If you like this kinda thing, plus a whole bunch of other practical, hands-on pen testing techniques (including recon, scanning, exploitation, post exploitation, and more), please do check out the SANS Security 560 course. I've recently added great new stuff on recon-ng, Anti-Virus evasion, PowerShell for post-exploitation, and much more!

Hope to see you there!

-Ed Skoudis.
SANS Instructor & Pen Test Curriculum Lead
Founder, Counter Hack

Pen Test Cheat Sheets:

Upcoming SANS Special Event - Pen Test HackFest 2018

HackFest_9x6_NOV2018

SANS Pen Test HackFest 2018 - Summit & Training
November 12-19, 2018 | Bethesda, MD (Washington DC Area)

  • (2) Day Summit Event with 20+ Amazing Speakers on Pen Test & Red Team Topics
  • Evening Networking Sessions
  • (3) Nights of SANS Core NetWars, with Coin-A-Palooza
  • (1) Night of CyberCity Missions
  • Choose from (8) SANS Pen Test Training Courses
  • Learn more: www.sans.org/hackfest

"If you haven't attended a SANS Summit, it's hard to understand the immense value. This is even more true for Pen Test HackFest" - Jason Nickola, DTS

Post a Comment






Captcha


* Indicates a required field.