Skip to main content
Glama
Sign In

SharkMCP

by kriztalz
GitHub
TypeScript
MIT License
  • Apple
  • Linux
OverviewInspectNewSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue

analyze_pcap_file

Analyze local pcap/pcapng files with customizable filters, output formats, and custom fields, using Wireshark/tshark integration for network security and troubleshooting.

Instructions

Analyze a local pcap/pcapng file. LLMs control all analysis parameters including filters, output formats, and custom fields. Can use saved configurations.

Input Schema

NameRequiredDescriptionDefault
configNameNoName of saved configuration to use for analysis parameters
customFieldsNoCustom tshark field list (only used with outputFormat=fields)
displayFilterNoWireshark display filter for analysis (e.g., "tls.handshake.type == 1")
filePathYesPath to the local .pcap or .pcapng file to analyze.
outputFormatNoOutput format: json (-T json), fields (custom -e), or text (default wireshark output)text
sslKeylogFileNoABSOLUTE path to SSL keylog file for TLS decryption

Input Schema (JSON Schema)

{ "$schema": "http://json-schema.org/draft-07/schema#", "additionalProperties": false, "properties": { "configName": { "description": "Name of saved configuration to use for analysis parameters", "type": "string" }, "customFields": { "description": "Custom tshark field list (only used with outputFormat=fields)", "type": "string" }, "displayFilter": { "description": "Wireshark display filter for analysis (e.g., \"tls.handshake.type == 1\")", "type": "string" }, "filePath": { "description": "Path to the local .pcap or .pcapng file to analyze.", "type": "string" }, "outputFormat": { "default": "text", "description": "Output format: json (-T json), fields (custom -e), or text (default wireshark output)", "enum": [ "json", "fields", "text" ], "type": "string" }, "sslKeylogFile": { "description": "ABSOLUTE path to SSL keylog file for TLS decryption", "type": "string" } }, "required": [ "filePath" ], "type": "object" }

You must be authenticated.

Other Tools from SharkMCP

Related Tools

    MCP directory API

    We provide all the information about MCP servers via our MCP API.

    curl -X GET 'https://glama.ai/api/mcp/v1/servers/kriztalz/SharkMCP'

    If you have feedback or need assistance with the MCP directory API, please join our Discord server