network-security--traffic-analysis

Solid

Network traffic analysis, PCAP parsing, IDS/IPS rule creation, firewall configuration auditing, and network anomaly detection

Data & Documents 47 stars 3 forks Updated today MIT

Install

View on GitHub

Quality Score: 89/100

Stars 20%
56
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
80
License 10%
100
Description 5%
100

Skill Content

# Network Security & Traffic Analysis ## Purpose Enable Claude to assist with network security operations including traffic analysis from PCAP files, IDS/IPS rule authoring for Snort and Suricata, firewall rule auditing, network anomaly detection, and network architecture security reviews. --- ## Activation Triggers This skill activates when the user asks about: - Analyzing PCAP or PCAPNG files for suspicious activity - Creating Snort or Suricata detection rules - Writing Zeek (Bro) scripts for network analysis - Reviewing firewall rules (iptables, nftables, pf, cloud security groups) - Detecting C2 beaconing, DNS tunneling, or data exfiltration in network traffic - Network architecture security review - IDS/IPS signature development - Network segmentation and east-west traffic analysis - TLS inspection and certificate analysis --- ## Prerequisites ```bash pip install scapy dpkt requests ``` **Recommended tools:** - `Wireshark / tshark` — Packet capture and GUI analysis - `Suricata` — Modern IDS/IPS engine - `Snort 3` — Classic IDS/IPS engine - `Zeek (Bro)` — Network analysis and scripting framework - `tcpdump` — Command-line packet capture - `NetworkMiner` — PCAP artifact extraction - `nmap` — Network scanning and discovery --- ## Core Capabilities ### 1. PCAP Traffic Analysis **When the user provides a PCAP file or asks to analyze network traffic:** ```bash # Quick summary with tshark tshark -r capture.pcap -q -z io,phs # Protocol hierarchy tshark -r...

Details

Author
Masriyan
Repository
Masriyan/Claude-Code-CyberSecurity-Skill
Created
3 months ago
Last Updated
today
Language
Python
License
MIT

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

analyzing-network-packets-with-scapy

Craft, send, sniff, and dissect network packets using Scapy for protocol analysis, network reconnaissance, and traffic anomaly detection in authorized security testing

12,642 Updated today
mukul975
AI & Automation Listed

analyzing-network-packets-with-scapy

Craft, send, sniff, and dissect network packets using Scapy for protocol analysis, network reconnaissance, and traffic anomaly detection in authorized security testing

6 Updated today
26zl
Data & Documents Solid

wireshark-network-traffic-analysis

This skill should be used when the user asks to "analyze network traffic with Wireshark", "capture packets for troubleshooting", "filter PCAP files", "follow TCP/UDP streams", "detect network anomalies", "investigate suspicious traffic", or "perform protocol analysis". It provides comprehensive techniques for network packet capture, filtering, and analysis using Wireshark.

27,681 Updated today
davila7
Data & Documents Listed

wireshark-network-traffic-analysis

This skill should be used when the user asks to "analyze network traffic with Wireshark", "capture packets for troubleshooting", "filter PCAP files", "follow TCP/UDP streams", "detect network anomalies", "investigate suspicious traffic", or "perform protocol analysis". It provides comprehensive techniques for network packet capture, filtering, and analysis using Wireshark.

335 Updated today
aiskillstore
AI & Automation Featured

analyzing-network-traffic-for-incidents

Analyzes network traffic captures and flow data to identify adversary activity during security incidents, including command-and-control communications, lateral movement, data exfiltration, and exploitation attempts. Uses Wireshark, Zeek, and NetFlow analysis techniques. Activates for requests involving network traffic analysis, packet capture investigation, PCAP analysis, network forensics, C2 traffic detection, or exfiltration detection.

12,642 Updated today
mukul975