[ad]
Pcapy is a Python extension module that interfaces with the libpcap packet capture library. Pcapy enables python scripts to capture packets on the network. Pcapy is highly effective when used in conjunction with a packet-handling package such as Impacket, which is a collection of Python classes for constructing and dissecting network packets.
Advantages of Pcapy
- Works with Python threads.
- Functions in both UNIX with libpcap and Windows with WinPcap.
- Provides a simpler Object Oriented API.
Requirements
- A Python interpreter. Versions 2.1.3 and higher.
- A C++ compiler. GCC G++ 2.95, as well as Microsoft Visual Studio 6.0 or MSVC 2003 depending on the Python version.
- A Libpcap 0.9.3 or newer. Windows users should have installed WinPcap 4.0 or newer.
Download Pcapy here:
Source code
Latest stable release (0.10.5) – gzip’d tarball or zip file
Win32 binaries – Pick the appropriate Python or WinPcap version.
Latest release (0.10.5) – Windows installer – Python 2.5 and WinPcap 4.0.
0.10.4 – Windows installer – Python 2.4 and WinPcap 3.1.
Sir Henry says
I wonder how this stacks up against scapy or whether it could be utilized in harmony with said module.
Pantagruel says
According to the portability list of scapy http://www.secdev.org/projects/scapy/portability.html it does more does more than just linux
little snippet
Scapy portability page
* Linux native installation guide
* generic Unix installation guide
* OpenBSD installation guide
* FreeBSD installation guide
* Mac OS X 10.4 (Tiger) installation guide
* Windows installation guide
etc
Damn 24 hours in 1 day just isn’t enough for work, family, some sleep and all that play.
Sir Henry says
With the python module on which I am working, I was looking to use scapy, but will also take into consideration the use of pcapy to see which is a better value to my project.
mumble says
Does anyone know if there are python bindings for the libnet injection library? I’m in a bizarre position – having been in networking before, but having to re-enter the business after a long absence, and I need to build a modern version of my old toolbox…
codepupil says
scapy uses pycap [http://code.google.com/p/pypcap/] for libcap.
Mumble: libdnet [http://code.google.com/p/libdnet/] may work depending on your needs.
eM3rC says
Nice post.
This could be useful when writing small python programs for network sniffing.