What tools does this skill support?

The skill provides guidance and implementation patterns for industry-standard tools including Wireshark, tcpdump, tshark, mitmproxy, Scapy, and Boofuzz.

How does it handle proprietary binary protocols?

It provides structural templates for common binary patterns like Type-Length-Value (TLV) and length-prefixed messages, along with Python parser examples.

Does this support protocol fuzzing?

Yes, it includes integration patterns for Boofuzz to perform active security testing and vulnerability discovery on custom protocols.

Can this skill help with encrypted traffic?

Yes, it includes techniques for TLS/SSL interception using mitmproxy, pre-master secret logging for browsers, and RSA private key decryption.

Can I use this to create custom Wireshark views?

Yes, it includes a Lua dissector template that allows you to create custom protocol viewers within the Wireshark GUI.

Protocol Reverse Engineering

Name: Protocol Reverse Engineering
Author: wshobson

bywshobson

•

25,583

•

Security & Testing

Analyzes and documents network protocols through traffic capture, packet dissection, and binary structure identification.

This skill empowers developers and security researchers to master complex network communications by providing comprehensive techniques for packet analysis and custom protocol documentation. It includes deep dives into traffic capture using Wireshark and tcpdump, automated analysis with Scapy and tshark, and methods for identifying binary patterns like TLV or length-prefixed structures. Whether debugging proprietary APIs, conducting security audits, or ensuring interoperability between systems, this skill offers the frameworks and scripts needed to decode, document, and even fuzz network traffic effectively.

Key Features

01Identification of binary structures including TLV, magic numbers, and length-prefixed headers

02Advanced traffic capture and filtering using Wireshark, tcpdump, and mitmproxy

0325,583 GitHub stars

04Automated packet analysis and manipulation scripts using Scapy and Python

05Custom protocol documentation templates and Lua-based Wireshark dissector generation

06Encryption analysis including entropy checks, TLS fingerprinting, and decryption methods

Use Cases

01Conducting security audits and vulnerability research on networked applications

02Debugging complex client-server communication issues and network-level bottlenecks

03Analyzing proprietary network protocols for interoperability and third-party integration

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add wshobson/agents protocol-reverse-engineering

For use in Claude.ai and ChatGPT

Download Skill