analyzing-network-traffic-of-malware
CommunityAnalyze malware network traffic to reveal C2.
AuthorYukiIto1999
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Analyzes malware network traffic generated by sandbox execution or live incident response to identify C2 protocols, data exfiltration channels, payload downloads, and lateral movement patterns.
Core Features & Use Cases
- Detect C2 communications, beaconing patterns, and data exfiltration in PCAPs using Wireshark, Zeek, and Suricata.
- Generate practical detection signatures and summaries to aid incident responders.
- Apply to sandbox captures or live networks to accelerate malware network behavior understanding.
Quick Start
Run the analyzer on a malware traffic PCAP to identify C2 channels, beaconing behavior, and exfiltration patterns.
Dependency Matrix
Required Modules
dpktscapy
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: analyzing-network-traffic-of-malware Download link: https://github.com/YukiIto1999/ctf-sleuth/archive/main.zip#analyzing-network-traffic-of-malware Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.