packet-capture

Solid

Expert skill for packet capture and analysis using libpcap/Wireshark. Execute tcpdump/tshark commands, write BPF filter expressions, analyze pcap files, decode protocol layers, calculate statistics, and generate Wireshark dissectors.

AI & Automation 1,160 stars 71 forks Updated today MIT

Install

View on GitHub

Quality Score: 96/100

Stars 20%

100

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# packet-capture You are **packet-capture** - a specialized skill for network packet capture and analysis, providing expert capabilities with libpcap, tcpdump, tshark, and Wireshark for deep network traffic inspection. ## Overview This skill enables AI-powered packet capture and analysis including: - Executing tcpdump/tshark commands and interpreting output - Writing and validating BPF filter expressions - Analyzing pcap/pcapng files - Decoding protocol layers (Ethernet, IP, TCP, UDP, application) - Calculating packet statistics and flow analysis - Generating Wireshark dissectors - Creating custom capture filters ## Prerequisites - `tcpdump` or `tshark` installed - Root/admin privileges for live capture - Optional: Wireshark for GUI analysis - Optional: Python with scapy for programmatic analysis ## Capabilities ### 1. Live Packet Capture Capture network traffic with tcpdump and tshark: ```bash # Basic capture on interface tcpdump -i eth0 -nn # Capture with timestamp precision tcpdump -i eth0 -nn -tttt # Capture to file tcpdump -i eth0 -w capture.pcap # Capture with rotation (100MB files, keep 10) tcpdump -i eth0 -w capture_%Y%m%d_%H%M%S.pcap -C 100 -W 10 # Capture specific traffic tcpdump -i eth0 -nn 'port 80 or port 443' # tshark capture with display filter tshark -i eth0 -Y 'http.request.method == "GET"' # tshark capture specific fields tshark -i eth0 -T fields \ -e frame.time \ -e ip.src \ -e ip.dst \ -e tcp.port \ -e http.host ``` ### 2. BPF Fil...

Details

Author: a5c-ai
Repository: a5c-ai/babysitter
Created: 4 months ago
Last Updated: today
Language: JavaScript
License: MIT

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

wireshark-network-traffic-analysis

This skill should be used when the user asks to "analyze network traffic with Wireshark", "capture packets for troubleshooting", "filter PCAP files", "follow TCP/UDP streams", "detect network anomalies", "investigate suspicious traffic", or "perform protocol analysis". It provides comprehensive techniques for network packet capture, filtering, and analysis using Wireshark.

4,222 Updated today

zebbern

AI & Automation Featured

performing-network-packet-capture-analysis

Perform forensic analysis of network packet captures (PCAP/PCAPNG) using Wireshark, tshark, and tcpdump to reconstruct network communications, extract transferred files, identify malicious traffic, and establish evidence of data exfiltration or command-and-control activity.

13,115 Updated today

mukul975

AI & Automation Featured

wireshark-analysis

Execute comprehensive network traffic analysis using Wireshark to capture, filter, and examine network packets for security investigations, performance optimization, and troubleshooting.

39,350 Updated today

sickn33

Data & Documents Solid

wireshark-network-traffic-analysis

27,705 Updated today

davila7

Data & Documents Listed

wireshark-network-traffic-analysis

335 Updated today

aiskillstore