analyzing-network-traffic-for-incidents
CommunityPinpoint attacker activity in network traffic.
AuthorYukiIto1999
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Network traffic analysis often requires domain expertise to derive incidents from raw PCAPs and logs; this Skill provides an automated, repeatable approach to identify adversary activity during security incidents.
Core Features & Use Cases
- Detect beaconing patterns and data exfiltration from PCAPs
- Identify lateral movement indicators across internal hosts using common protocols
- Correlate Zeek/IDS data to produce a structured incident report for IR teams
Quick Start
Run the network incident analysis against a PCAP file to generate a concise incident report.
Dependency Matrix
Required Modules
scapy
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: analyzing-network-traffic-for-incidents Download link: https://github.com/YukiIto1999/ctf-sleuth/archive/main.zip#analyzing-network-traffic-for-incidents Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.