Jump to content
Sign in to follow this  
Sandro Bruscino

How to use Scapy to extract data Hidden in DNS traffic

Recommended Posts

Sandro Bruscino

Hi, I've a pcap file where, hidden in UDP DNS traffic, there is data I need to extract.


I managed to extract it using tshark and the options

-T fields -e dns.txt


and saving the result in a txt file.


I don't like this solution because my output file is full of junk that I need to delete by hand. The data is infact truncated between packets and I would need to reconstruct it without having to do all this manual work.


I think that Scapy could suit my needs but I don't know exactly how to do this. Could someone point me in the right direction?


Thank you.

Share this post

Link to post

Please sign in to comment

You will be able to leave a comment after signing in

Sign In Now
Sign in to follow this