MCP Wireshark

@khuynh22

Visit Server

2 months ago

Wireshark/tshark MCP server — capture live network traffic, analyze .pcap files, apply display filters, follow TCP/UDP streams, and export to JSON. Works with Claude Desktop, VS Code Copilot, and any MCP-compatible client.

Overview Tools Comments

Overview

mcp-wireshark

MCP server that exposes Wireshark/tshark to AI assistants. Install tshark, then pip install mcp-wireshark.

Tools

check_installation — verify tshark is installed
list_interfaces — list network interfaces
live_capture — capture live traffic
read_pcap — read .pcap/.pcapng files
display_filter — apply Wireshark display filters
summarize_pcap — high-level summary with top protocols and talkers
stats_by_proto — protocol hierarchy statistics
follow_tcp / follow_udp — extract stream payloads
export_json — export packets to JSON

Try in Playground

Server Config

{
  "mcpServers": {
    "wireshark": {
      "command": "mcp-wireshark",
      "args": []
    }
  }
}

Build with ShipAny.