Network protocol Index | WireX Systems

Network Protocols Index

What is a Network Protocol?

A network protocol is a set of rules that govern the communication between devices over a computer network. It specifies how data is transmitted over a network, how devices identify and authenticate each other, the format of the data, the order in which the data is sent, how errors are handled, and how data is recovered if it is lost or corrupted during transmission.

Network protocols define the methods by which devices communicate with each other, enabling them to send and receive data, establish connections, and manage network resources.

By using predefined protocols, devices from different manufacturers and running different software can communicate with each other seamlessly. This enables networks to function reliably and efficiently, and facilitates the exchange of information between devices across the globe.

At WireX Systems we analyze over a hundred different protocols and extract thousands of different attributes and commands from protocol payloads. Here is a sample list of protocols, describing how these protocols work, what are they used for, how they were used in an attack scenario and relevant correlation to the MITRE ATT&CK® Framework as well as sample attributes that WireX Systems is analyzing, extracting, compressing and indexing from the protocol payload.

Protocols Filter


Network File System (NFS) is a network protocol that allows users to access and share files over a network.


HTTP (Hypertext Transfer Protocol) is the protocol used to transfer data between web browsers and web servers.


CIFS, or Common Internet File System, is a network protocol that is used to provide shared access to files, printers, and other network resources.



The Transmission Control Protocol (TCP) is a foundational network protocol that is essential for the functioning of the Internet.



Real-time Transport Protocol (RTP) is a network protocol used for delivering audio and video over IP networks.



Session Initiation Protocol (SIP) is a network protocol that is used to establish, modify and terminate multimedia sessions over the network.


TELNET is a network protocol that enables remote access to computers and other devices.


SMTP, or Simple Mail Transfer Protocol, is a fundamental network protocol that is used to facilitate the transmission of emails.


Internet Control Message Protocol (ICMP) is an important part of the Internet Protocol (IP) suite.


Dynamic Host Configuration Protocol (DHCP) is a network protocol that automates the process of assigning IP addresses and other network configuration information to devices on a network.


Simple Network Management Protocol (SNMP) is a widely used network protocol designed for managing and monitoring network devices such as routers, switches, servers, printers, and other network-attached devices.


NETBIOS (Network Basic Input/Output System) is a legacy network protocol that enables communication between computers and devices within a local area network (LAN).


PPTP, or Point-to-Point Tunneling Protocol, is a network protocol that enables the creation of virtual private networks (VPNs).



SSH (Secure Shell) is a cryptographic network protocol that provides secure communication channels over unsecured networks.



Network Address Translation (NAT) is a networking protocol that enables multiple devices on a private network to share a single public IP address when accessing the internet.


IPSec, short for Internet Protocol Security, is a suite of network protocols designed to secure communications over IP networks.



The Domain Name System (DNS) is a critical network protocol that enables the internet to function smoothly by translating human-readable domain names into IP addresses, which are numerical identifiers for devices connected to the internet.


HTTPS (Hypertext Transfer Protocol Secure) is an extension of the HTTP protocol that provides secure communication over a network, such as the internet, by encrypting the data exchanged between a client (e.g., web browser) and a server (e.g., web server).



File Transfer Protocol (FTP) is a standard network protocol used to transfer files between a client and a server over a TCP/IP-based network, such as the internet.



User Datagram Protocol (UDP) is a transport layer protocol in the Internet Protocol (IP) suite, designed for simple and fast data transmission over a network.



TDS (Tabular Data Stream) is a network protocol used primarily for communication between Microsoft SQL Server and its clients.



SMB, (Server Message Block), is a network protocol designed to enable file and resource sharing between computers on a network.


Post Office Protocol 3 (POP3) is a widely-used application layer protocol in the Internet suite that allows email clients to retrieve emails from a remote mail server.


Trivial File Transfer Protocol (TFTP) is a simple, lightweight file transfer protocol used primarily for transferring files over a network.



Transparent Network Substrate (TNS) is a proprietary networking protocol developed by Oracle Corporation.



Remote Desktop Protocol (RDP) is a proprietary network protocol developed by Microsoft, enabling users to remotely connect and manage another computer or device over a network connection.



Internet Relay Chat (IRC) is an application layer protocol that facilitates text-based communication in real-time over the internet.


NetFlow is a network protocol developed by Cisco Systems for collecting and analyzing IP network traffic data.



RPC ((Remote Procedure Call) sometimes called RPCP(Remote Procedure Call Protocol)) is a communication protocol used by computer systems to enable one system to request services or functions from another system over a network.


LDAP, or the Lightweight Directory Access Protocol, is a network protocol used for accessing and managing directory services over an Internet Protocol (IP) network.


RADIUS (Remote Authentication Dial-In User Service) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for users who connect to and use a network service.



VNC, or Virtual Network Computing, is a remote desktop protocol that allows users to access and control a computer's graphical desktop environment over a network connection.



Address Resolution Protocol (ARP) is a network protocol used to map an Internet Protocol (IP) address to a physical address, such as a Media Access Control (MAC) address, on a local network.


WHOIS is a network protocol used to query databases containing information about the registration and ownership of domain names, IP addresses, and autonomous systems.


TACACS (Terminal Access Controller Access-Control System) is a network protocol that provides centralized authentication, authorization, and accounting (AAA) services for network devices, such as routers, switches, and firewalls.


Kerberos is a network authentication protocol that allows secure communication and authentication between clients and services within a distributed computing environment.


Layer 2 Tunneling Protocol (L2TP) is a network protocol that enables the creation of virtual private networks (VPNs) by encapsulating data packets from one network to another.


Internet Message Access Protocol (IMAP) is an application layer protocol used for accessing and managing email messages stored on a mail server.



Border Gateway Protocol (BGP) is a standardized exterior gateway protocol designed to exchange routing and reachability information between autonomous systems on the Internet.


SCADA (Supervisory Control and Data Acquisition) is a type of industrial control system (ICS) used for monitoring, controlling, and managing industrial processes and critical infrastructure.



Routing Information Protocol (RIP) is a distance-vector routing protocol used to determine the best path for data to travel through a network.


OSPF (Open Shortest Path First) is a widely used link-state routing protocol in IP networks. It is an interior gateway protocol (IGP) and part of the Internet Protocol suite, designed to exchange routing information within an autonomous system (AS).


Syslog is a standardized protocol used for transmitting log messages in computer systems, particularly from network devices to a central log server. It is widely used for event logging, error messages, diagnostics, and auditing purposes.


The Hot Standby Router Protocol (HSRP) is a Cisco-proprietary redundancy protocol for establishing fault-tolerant, default-gateway configurations on a network.


The MySQL protocol is a client-server protocol that facilitates communication between a MySQL client and a MySQL server. It is designed to enable the transmission of SQL queries and the reception of query results between the two parties.


Universal Plug and Play (UPnP) is a set of networking protocols designed to enable devices to discover each other and automatically establish communication and collaboration.


The PostgreSQL protocol is the communication protocol used by PostgreSQL, an open-source relational database management system (RDBMS).


The Server Message Block (SMB) protocol is a network file-sharing protocol that enables applications to read and write to files and to request services from server programs on a computer network.


The Windows Registry (WinReg) protocol is a communication protocol used by the Windows operating system to access and manage the Windows Registry.


The Distributed Component Object Model (DCOM) protocol is a Microsoft technology that extends the Component Object Model (COM) to support communication between objects across a network.

Scroll to top