Basic Local Network Tools for Technicians
Project description
tech-tools: Basic Functions to Assess Hosts On a Network
tech-tools is geared towards the Low Voltage Security Industry, though its design is fairly general and could have other use cases.
The basic goal is to gather information about local hosts for potential troubleshooting. Currently, only IPv4 is supported.
This projects makes use of the OS CLI and is currently supported on Linux and Windows. Some parts of the code utilize route tracing. This functionality is built into windows, though your version of Linux may not have it installed. Refer to your distribution's documentation, though commonly it can be installed using:
sudo apt-get install traceroute
Do not use tech-tools (or other networking tools) unless on your own network or on a network in which you have been given permission to operate.
Getting Started
pip install tech-tools
Simple examination of local network with accompany DataFrame:
from tech_tools import local_devices
my_local_network_df = local_devices()
print(my_local_network_df)
Attempting to gather information for local devices, please wait...
ip mac ports company
0 10.10.0.1 54:AF:97:2D:14:30 [80, 443] TPLink
1 10.10.0.4 58:B9:65:14:2D:6C NaN Apple
2 10.10.0.7 90:09:D0:22:41:DE [80, 443] Synology
By default, the function searches for the network associated with the machine's primary interface, and on ports [80, 443] but this behavior can be easily modified for different ports or for a network on a different valid interface.
my_local_network_df = local_devices(network='192.168.0.1/26', ports = [21, 22, 5000, 8000])
This function assumes a valid ping, which may not be the case for all hosts. It also relies on the local arp table, though this table may not be fully populated for all devices. Running the function multiple times may yield different results.
An Alternative is to scan for hosts via TCP ports.
Basic TCP Scanning
Provide a list of IPv4 Addresses and a list of ports to the TCP scanner function. List generating functions can aid in this process. The scanner will return a DataFrame containing hosts along with a list of ports on which they responded.
from tech_tools import tcp_ip_port_scanner
from tech_tools.utilities import generate_range_from_subnet, generate_range_from_two_ips
subnet_to_scan = generate_range_from_subnet('10.10.0.1/20')
range_of_addresses_to_scan = generate_range_from_two_ips('10.10.0.1', '10.10.0.150')
manual_list_of_addresses_to_scan = ['10.10.0.1', '10.10.0.199', '10.10.0.201', ...]
ports_to_scan = [21, 22, 80, 443, 514]
results = tcp_ip_port_scanner(subnet_to_scan, ports_to_scan)
print(results)
ip ports
0 10.10.0.1 [80, 443]
1 10.10.0.19 [514]
2 10.10.0.26 [22, 514]
The preceding demonstrations assume that your machine has an address that matches the network on which it is probing.
Sometimes packet sniffing can be a helpful starting point when very little is known about the networking environment. You could install pyshark or,
as is the direction of this project, use wireshark GUI to monitor activity for a short while and export packet dissections into JSON format.
The following functions help to extract useful information from such a JSON file.
Wireshark JSON Analysis
Using the path to a valid file, produce a list of addresses that fall under the umbrella of private/local. Alternatively, produce a DataFrame of sniffed Mac Addresses along with their associated manufacturing company. Larger files will require more time to process, so use good judgement when capturing packets as a few hundred frames might provide enough information.
from tech_tools.wireshark import wireshark_private_ips, wireshark_mac_addresses
path_to_file = "/some/path/to/file.json"
local_ip_addresses = wireshark_private_ips(path_to_file)
sniffed_mac_addresses = wireshark_mac_addresses(path_to_file)
print(local_ip_addresses)
[IPv4Address('10.10.0.1'), IPv4Address('10.10.0.101'), IPv4Address('169.254.0.132'),...]
print(sniffed_mac_addresses)
src_mac src_mac_company
0 58:B9:65:14:2D:6C Apple, Inc.
1 54:AF:97:2D:14:30 TP-Link Corporation Limited
2 90:09:D0:22:41:DE Synology Incorporated
DISCLAIMER
This project is in no way affiliated with Wireshark or any of its related services and packages. Any usage of that product is subject to its terms of use.
Once again, do not use tech-tools or any other networking tool unless you have received permission to do so.
This project is not responsible for any misuse or abuse, nor does it condone such practices.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file tech_tools-0.1.tar.gz.
File metadata
- Download URL: tech_tools-0.1.tar.gz
- Upload date:
- Size: 750.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/5.1.1 CPython/3.12.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
be12c80272832f13a4ba0aaa37c208f66a94d9acbcabe4b0c4932c33f7dec88f
|
|
| MD5 |
8e58af31a916327c972ec2a3d2372202
|
|
| BLAKE2b-256 |
9fa36aa203e8d3a1b24f6b7c121414dcdcd42cee408db548654405db0118b8b9
|
File details
Details for the file tech_tools-0.1-py3-none-any.whl.
File metadata
- Download URL: tech_tools-0.1-py3-none-any.whl
- Upload date:
- Size: 754.5 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/5.1.1 CPython/3.12.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
bc8fc3d380e0f5a7956070b9390902f3a8400b2642c7f5048d6c544ab867f0c2
|
|
| MD5 |
f5649b47b573f2d376e6beb1dc81da16
|
|
| BLAKE2b-256 |
e02a11e8f3cd9df15a5635c2f3667bd47e0ffbe67292756e6e4a9dc61a651639
|
