Does this skill require Wireshark to be installed?

Yes, it requires TShark (the Wireshark command-line utility) to be installed and available in your system's PATH.

What kind of threats can it detect?

It identifies common network threats like DNS tunneling, data exfiltration patterns, port scans, and high-frequency beaconing.

Can it analyze live network traffic?

This skill is specifically optimized for the analysis of existing PCAP or PCAPNG capture files to extract forensic indicators and statistics.

Does it require Python libraries?

Yes, it uses the pyshark library (Python 3.8+) to parse and process packet data programmatically for detailed reporting.

Network Traffic Analysis with TShark

Name: Network Traffic Analysis with TShark
Author: mukul975

bymukul975

•

4,121

•

보안 및 테스팅

Analyzes PCAP files to identify suspicious network flows, extract indicators of compromise, and generate protocol statistics using TShark and PyShark.

This skill empowers Claude to perform deep packet inspection and network forensics by automating TShark and PyShark commands. It excels at identifying anomalies such as DNS tunneling, port scanning, and beaconing patterns within capture files. Whether used for incident response or proactive security audits, it streamlines the process of extracting actionable intelligence—like IP addresses, domains, and protocol distributions—from raw network traffic data, providing structured reports with severity ratings for identified threats.

주요 기능

01Detection of suspicious patterns like port scanning and beaconing

02Structured reporting of network flow summaries and threat indicators

03Advanced DNS anomaly detection for identifying tunneling attempts

04Extraction of network IOCs including IPs, domains, and HTTP URLs

054,121 GitHub stars

06Automated protocol hierarchy and conversation statistics extraction

사용 사례

01Incident response investigations following a potential network breach

02Security auditing of network protocol usage and service exposure

03Proactive hunting for command-and-control (C2) beaconing in PCAP files

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-network-traffic-analysis-with-tshark

For use in Claude.ai and ChatGPT

주요 기능

01Detection of suspicious patterns like port scanning and beaconing

02Structured reporting of network flow summaries and threat indicators

03Advanced DNS anomaly detection for identifying tunneling attempts

04Extraction of network IOCs including IPs, domains, and HTTP URLs

054,121 GitHub stars

06Automated protocol hierarchy and conversation statistics extraction

사용 사례

01Incident response investigations following a potential network breach

02Security auditing of network protocol usage and service exposure

03Proactive hunting for command-and-control (C2) beaconing in PCAP files

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-network-traffic-analysis-with-tshark

For use in Claude.ai and ChatGPT