Wednesday, April 7, 2010

Scapytain

Just come across a web application that enables you to store, organise and run test campaigns on top of Scapy : Scapytain. This tool may help to relief the pain to scapy-based testing. This can be used to build the SMB test bed for Dionaea, since Dionaea SMB stack is build on Scapy.

From the official site http://www.secdev.org/projects/scapytain/, some term we need to clear with :
Test
A small python snippet that can succeed (returns True or None) or fail (returns False or raises an exception)
Objective
A property you want to verify. The verification is done by one or more tests.
Test Plan
A set of objectives.
Test mean
A collection of equipments used for the tests. Each test mean can be given some initialization code that will be run before the tests so that test's implementation can be independant of things such as target IP addresses, etc.
Campaign
A set of test plans to run through.
Campaign run
One complete or partial run of all tests regarded by objectives in campaign's test plans.

I have installed Scapytain in my machine, and 1 dependencies which needed but not mention in the manual :

gento@localhost:~$sudo apt-get install python-trml2pdf

The test mean :
target="192.168.1.23"

The simple test code :

a=IP()/TCP()
a.src="192.168.1.10"
a.dst=target
a.sport=1122
a.dport=80
b=a/NBTSession()/SMBNegotiate_Protocol_Request_Header()
c=b/SMBSession_Setup_AndX_Response()
c
send(c)

The test result is Passed and my netcat which listen on port 80 has show the connection.

No comments:

Post a Comment