Skip to content
/ tcpliveplay Public

python script for tool tcpliveplay to simulate tcp traffic

5 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

saurabh10041998/tcpliveplay

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
Helper.py
Helper.py
 
 
README.md
README.md
 
 
tcp-exec.py
tcp-exec.py
 
 

Repository files navigation

Tcpliveplay python script

This script is used to simulate tcp connections from the captured tcp traffic on the live network

Why to rewrite this python version of tcpliveplay.c from tcpreplay

  • well, tcpliveplay.c is no longer updated since 4 jul 2020
  • It(tcpliveplay.c) does not even complete the tcp handshake
  • no facility for the rewriting packet. Need to use the tcprewrite and then feed to tcpliveplay
  • need to enable flags for CRC, IP and TCP checksum recomputation
  • I want something simple pythonic proof of concept for tcp
  • no facility to see the responce for the packets

Project dependencies

  • python 3
  • scapy

What a noobish python implemetation

Yes probably you are right, I am not pro.. Show me how to do it better. A nice pull request might cheer me up :)

usage

git clone https://github.com/saurabh10041998/tcpliveplay.git
cd tcpliveplay
./tcp-exec.py -h       # help menu
./tcp-exec.py -f <path_to_pcap_file> -i <interface> -s source_ip -d destination_ip --sport=<source_port> --dport=<destination_port>

help menu

./tcp-exec.py -h

usage: tcp-exec.py [-h] -f PCAP -i IFACE -s SRC -d DST [--sport SPORT] --dport DPORT

tcpliveplay python script

optional arguments:
  -h, --help            show this help message and exit
  -f PCAP, --pcap PCAP  path to pcap file
  -i IFACE, --iface IFACE
                        interface
  -s SRC, --src SRC     source IP
  -d DST, --dst DST     destination IP
  --sport SPORT         source port as client
  --dport DPORT         destination port of tcp process

Examples

./tcpexec.py -f /path/to/file.pcap -i lo -s 127.0.0.1 -d 127.0.0.1 --sport=9002 --dport=4189

The above example will play the tcp packets between 127.0.0.1:9002(us) and 127.0.0.1:4189(server). Obviously some process must be in listen mode at port 4189 to accept the packet and send us the acknowledgment.

Oh No!! script is not working, what should I do ??

Please check that below things are taken care of

  1. Script must be run as root, since scapy requires root access.
  2. Source ip must be same as that of the interface on which you are replaying the packet ( This is just required to view the response sent by server)
  3. Your pcap file must have complete tcp stream ( at least SYN, ACK messages/packets to complete the handshake).

Tasks to be established

  • Replaying the single tcp stream on interface
  • Adding destination port as command line argument
  • Smart selection of the interface based on the source IP
  • Smart selection between whether to use layer 2 routing or layer 3 routing
  • Grabbing mac and ip of interface
  • if layer 2 routing used, calculate the next hop mac
  • can we simulate multiple TCP stream ??

About

python script for tool tcpliveplay to simulate tcp traffic

Resources

Readme
Activity

Stars

5 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages