Tshark can help us greatly to audit applications that make use of sockets. Furthermore, we can use it as a support tool to understand and investigate protocols that lack technical documentation. In this recipe we will see a couple of examples that represent these scenarios.
bmerino@Mordor:~$ nc 192.168.1.35 8012 Service BANE-1.0 IP --> 192.168.1.35 PORTS --> 8012,8080,80,21 AAAA --->Command not found. Type H for help H --->H,IP,PORTS,TCP,UDP,LISTENING,CONNECTIONS