Scapy/Conversations

From charlesreid1

Revision as of 16:57, 26 January 2016 by Admin (talk | contribs) (→‎Conversations)

Conversations

Components

To analyze a wireless conversation, you need to be able to parse a few different pieces of information.

First is the source address. This will be a MAC address - you will not get an IP address unless you're on the same network and there is some kind of name resolution service available to turn a MAC address (Layer 2) into an IP address (Layer 3).



Scapy Built-In Conversation Analysis

Scapy has a built-in conversations method. You'll need to build ImageMagick with X11: on the Mac, that's 

brew uninstall imagemagick
brew install imagemagick --with-x11

Once we've done that, we can take a look at the existing method to print out a graph of all the conversations. This method is built into Scapy. We can utilize it to create our own conversations list, bypassing the graphing part and processing the information ourselves.

However, I have no idea whether the graphs look good, because even after the above steps I still can't get it to work.




Defcon.png
scapy
a Python library for interfacing with network devices and analyzing packets from Python.


Scapy  · Category:Scapy

Building Wireless Utilities: Scapy/Airodump Clone  · Scapy/AP Scanner

Analyzing Conversations: Scapy/Conversations

Database: Scapy/Wifi Database

Category:Scapy  · Category:Python  · Category:Networking


Flags  · Template:ScapyFlag  · e




Retrieved from "https://charlesreid1.com/w/index.php?title=Scapy/Conversations&oldid=9182"