0145-protocol-reverse-engineering
CommunityReverse engineer protocols from real traffic.
Software Engineering#tshark#wireshark#network protocol#packet analysis#tls decryption#protocol documentation#custom dissector
AuthorMrJmpl3
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It helps you understand proprietary or undocumented network protocols by turning raw packet captures into a clear breakdown of message formats, fields, and behavior.
Core Features & Use Cases
- Traffic capture & inspection: Capture network sessions with Wireshark/tshark and tcpdump, then filter streams to isolate relevant request/response patterns.
- Protocol identification & dissection: Detect protocol types using signatures and header patterns, and infer structures like fixed headers, TLV, and length-prefixed messages.
- Decryption & analysis workflows: Use TLS metadata, JA3/JA3S, certificate extraction, and key-log based decryption to reveal application-layer content.
- Documentation & validation: Produce custom protocol specifications and implement parsers/dissectors and test them with replay or fuzzing.
Quick Start
Use the skill’s workflow to capture traffic, apply Wireshark/tshark filters to isolate messages, infer the header and message boundaries, then document the protocol and validate your understanding with a custom parser.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: 0145-protocol-reverse-engineering Download link: https://github.com/MrJmpl3/codex_____data_____configuration/archive/main.zip#0145-protocol-reverse-engineering Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.