From c7ed81bc68f765fa3edfb8dff6a393fe24390f51 Mon Sep 17 00:00:00 2001
From: Copilot <198982749+Copilot@users.noreply.github.com>
Date: Thu, 19 Mar 2026 21:47:49 +0800
Subject: [PATCH] Add Wireshark-MCP to tools section (#35)

* Initial plan

* Add Wireshark-MCP to README tools section

Co-authored-by: Mr-xn <18260135+Mr-xn@users.noreply.github.com>

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: Mr-xn <18260135+Mr-xn@users.noreply.github.com>
---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index d3571e6..ed4827f 100644
--- a/README.md
+++ b/README.md
@@ -1694,6 +1694,7 @@
 - [AgentInjectTool：改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能](https://github.com/SummerSec/AgentInjectTool)
 - [ByPassBehinder4J：冰蝎Java WebShell免杀生成](https://github.com/Tas9er/ByPassBehinder4J)
 - [ecapture：通过 hook ebpf 技术，无需CA证书，进行HTTPS的明文通讯抓包、bash 命令捕获和 MySQL query 等数据库审计](https://github.com/ehids/ecapture)
+- [Wireshark-MCP：基于 MCP Server 将 tshark 转化为结构化分析接口，让 AI 助手直接分析 pcap 数据包文件，支持 Claude Desktop、Cursor 等 MCP 兼容客户端](https://github.com/bx33661/Wireshark-MCP)
 - [udpme：从协议层面借助 EDNS0 过滤掉有问题的 UDP 报文](https://github.com/IrineSistiana/udpme)
 - [FirmWire：支持三星和联发科的全系统基带固件分析平台](https://github.com/FirmWire/FirmWire)
 - [apache-afl：使用 AFL++ 对 Apache httpd 进行 Fuzz 的自动化配置](https://github.com/0xbigshaq/apache-afl)