I found myself in need of writing something that filters packets according to their payload,and it had to be fast.
I wrote a netfilter module that filtered the data so it’ll meet my performance needs, but I was curious if it’s possible to hook nfq to scapy.
A quick query and I found someone who already did it! cool right?
You can write an iptables rule that redirects packets to a specific queue and process it with scapy!
by the way, did you know that iptables is being replaced by the superior nftables?