# secdev/scapy

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/secdev-scapy).**

12,068 stars · 2,190 forks · Python · gpl-2.0

## Links

- GitHub: https://github.com/secdev/scapy
- Homepage: https://scapy.net
- awesome-repositories: https://awesome-repositories.com/repository/secdev-scapy.md

## Topics

`hacktoberfest` `network` `network-analysis` `network-discovery` `network-security` `network-visualization` `packet-analyser` `packet-capture` `packet-crafting` `packet-sniffer` `pcap` `python` `scapy` `security` `security-tools`

## Description

Scapy is a network packet manipulation tool and protocol analysis suite designed for crafting, sending, sniffing, and dissecting network traffic. It functions as a framework for building custom network tools that interact directly with low-level packet headers and payloads, enabling users to perform security research and network diagnostics.

The system distinguishes itself through a layer-based construction model that allows users to define protocols as stacked objects, which automatically handle checksums and field offsets. It utilizes dynamic field reflection to map packet structures to binary data formats and employs a raw socket interface to bypass standard transport layer restrictions for custom packet injection.

The platform provides a comprehensive capability set for network security testing, automated scanning, and traffic simulation. It includes a protocol dissection engine that recursively parses binary streams into structured objects, supported by stateful flow tracking to correlate packets into logical sessions. Users can capture and analyze live traffic through a background sniffing loop to troubleshoot communication patterns and verify protocol implementations.

## Tags

### Networking & Communication

- [Custom Network Protocols](https://awesome-repositories.com/f/networking-communication/custom-network-protocols.md) — Provides a toolkit for building custom network tools that interact with low-level packet headers and payloads.
- [Network Traffic Analyzers](https://awesome-repositories.com/f/networking-communication/network-traffic-analyzers.md) — Captures and inspects live network traffic to troubleshoot communication patterns and protocol implementations. ([source](https://cdn.jsdelivr.net/gh/secdev/scapy@master/README.md))
- [Packet Construction](https://awesome-repositories.com/f/networking-communication/packet-engines/packet-construction.md) — Allows crafting and sending custom network packets for connectivity testing and security research. ([source](https://cdn.jsdelivr.net/gh/secdev/scapy@master/README.md))
- [Dissection Engines](https://awesome-repositories.com/f/networking-communication/binary-protocols/dissection-engines.md) — Provides a recursive engine for parsing binary network streams into structured objects.
- [Network Protocol Implementations](https://awesome-repositories.com/f/networking-communication/network-protocol-implementations.md) — Provides tools for decoding and analyzing raw network traffic to troubleshoot connectivity.
- [Network Scanning Tools](https://awesome-repositories.com/f/networking-communication/network-scanning-tools.md) — Enables automated network scanning to discover hosts and identify open ports via custom probes.
- [Network Traffic Processors](https://awesome-repositories.com/f/networking-communication/network-traffic-processors.md) — Generates synthetic network traffic to test application and infrastructure resilience against specific data loads.
- [Packet Capture Engines](https://awesome-repositories.com/f/networking-communication/packet-capture-engines.md) — Implements a background sniffing loop for capturing and dissecting raw network traffic.
- [Socket Interfaces](https://awesome-repositories.com/f/networking-communication/socket-interfaces.md) — Provides direct access to raw sockets for custom packet injection and network stack interaction.
- [Flow Tracking Engines](https://awesome-repositories.com/f/networking-communication/network-connection-detectors/connection-states/flow-tracking-engines.md) — Maintains internal tables to correlate network packets into logical sessions for analysis.

### Security & Cryptography

- [Packet Analysis Tools](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/network-security/traffic-inspection-manipulation/packet-analysis-tools.md) — Serves as a comprehensive library for crafting, sending, sniffing, and dissecting network packets.
- [Security Testing](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/security-testing-auditing/security-testing.md) — Facilitates network security testing by crafting custom packets to probe for vulnerabilities.

### System Administration & Monitoring

- [Packet Inspection](https://awesome-repositories.com/f/system-administration-monitoring/packet-inspection.md) — Offers a framework for capturing and inspecting live network traffic to verify security protocol implementations.