mcpcap is a modular Python MCP server designed to analyze network PCAP captures using protocol-specific analysis tools. It provides stateless MCP analyses that accept PCAP file paths or HTTP(S) URLs as parameters, eliminating the need to upload files. The server's modular design includes DNS, DHCP, ICMP, and CapInfos analyses, with straightforward extensibility for new protocols. It leverages Scapy for robust packet parsing and returns results in JSON, optimized for consumption by MCP clients such as Claude Desktop. It supports both local and remote PCAP sources, with automatic temporary downloads and cleanup, and accepts common formats (.pcap, .pcapng, and .cap). The CLI allows selecting modules and configuring limits like max-packets. Public analysis tools include analyze_dns_packets, analyze_dhcp_packets, analyze_icmp_packets, and analyze_capinfos, each producing structured data such as DNS queries/responses, DHCP transactions and lease info, ICMP metrics, and file metadata. The architecture describes a flow from MCP Client Request to a structured JSON response, and notes future module expansions (e.g., HTTP, BGP, TLS). Remote file support is designed to operate securely over HTTPS when possible and to sanitize temporary files after analysis.