traffic-analysis-pcap
OfficialFast PCAP forensics and evidence extraction
Software Engineering#packet-analysis#pcap#tshark#wireshark#network-forensics#tls-decryption#file-carving
Authoryaklang
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Provides a structured, expert playbook to analyze network captures quickly and reliably, turning raw PCAPs into actionable evidence and investigator findings without guesswork.
Core Features & Use Cases
- PCAP repair & preparation: recover corrupted captures, convert pcapng to pcap, and merge multiple files for unified analysis.
- Protocol-focused triage: Wireshark and tshark filters and workflows for HTTP, DNS, TLS/HTTPS, FTP, SMTP, ICMP, USB HID, and WiFi handshakes to locate credentials, files, and covert channels.
- Data extraction & tooling: file carving, NetworkMiner automation, TLS decryption using SSLKEYLOGFILE or server keys, and command-line tshark extraction for incident response, CTF forensics, and penetration testing.
Quick Start
Open capture.pcap in Wireshark or run tshark to list protocol hierarchy, extract HTTP objects and credentials, and search DNS for long subdomains or TXT records indicating tunneling.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: traffic-analysis-pcap Download link: https://github.com/yaklang/hack-skills/archive/main.zip#traffic-analysis-pcap Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.