Qualifi Level 5 Diploma in Cyber Security

Unit DSC03: Communications and Incident Management

What you need

● A Linux machine, real or virtual, to act as the Sender. I recommend Kali.
● Another computer of any sort to act as the Target. I used a second Kali machine.

What is scapy?
Scapy is an interactive environment that lets you build packets of any type you want and send
them onto the network, and monitor the responses. It can be used for almost anything you want:
port scanning, testing firewalls and IPS systems, attacks, etc.

Finding the Target IP Address

Your target IP is “ 17.217.5.238”

To login to your kali machine, go to: https://www.serfish.com/console/

Enter the following credentials:

And click on open ssh connection.

In the window which appears. Wait fro a few seconds and enter password
“Cucakali14cucakali14”. You will now be logged in to kali.

Starting scapy
Use this command to start scapy:
 scapy
Scapy opens, as shown below on this page.

Sending ICMPv4 Packets with scapy

In the Linux machine, in the Terminal window, at the >>> prompt, type this command, and then
press the Enter key:
i = IP()
This creates an object named i of type IP. To see the properties of that object, use the display()
method with this command:
i.display()
A list of values appears, starting with the version number (4) and ending with the source and
destination IP addresses, as shown below on this page.

If the colors are difficult to see, adjust them by clicking Edit, "Profile Preferences", Colors. I
used "Black on light yellow".

Use these commands to set the destination IP address and display the properties of the i object
again. Replace the IP address in the first command with the IP address of your target Target
machine:
 i.dst="192.168.198.138"

i.display()

Notice that scapy automatically fills in your machine's source IP address, as shown below on
this page.

Use these commands to create an object named ic of type ICMP and display its properties:

ic = ICMP()

ic.display()

There aren't many properties for this object--it's just an echo-request, as shown below on this
page.

Use this command to send the packet onto the network and listen to a single packet in
response. Note that the third character is the numeral 1, not a lowercase L:

sr1(i/ic)
This command sends and receives one packet, of type IP at layer 3 and ICMP at layer 4. As you
can see in the image above, the response is shown, with ICMP type echo-reply. The Padding
section shows the portion of the packet that carries higher-level data. In this case it contains
only zeroes as padding, as shown below.

Use this command to send a packet that is IP at layer 3, ICMP at layer 4, and that contains data
with your name in it (replace YOUR NAME with your own name):

sr1(i/ic/"YOUR NAME")
You should see a reply with a Raw section containing your name, as shown below on this page.

Saving the Screen Image

Make sure you can see your name in the response packet.