policy/protocols/smb/log-cmds.zeek¶

SMB¶

Load this script to generate an SMB command log, smb_cmd.log. This is primarily useful for debugging.

Namespace: SMB
Imports: base/protocols/smb

Summary¶

Runtime Options¶

SMB::ignored_command_statuses: set &redef

The server response statuses which are not logged.

Redefinitions¶

Log::ID: enum

SMB::CMD_LOG

Hooks¶

SMB::log_policy: Log::PolicyHook

Detailed Interface¶

Runtime Options¶

SMB::ignored_command_statuses ¶

Type

set [string]

Attributes

Default

{
   "MORE_PROCESSING_REQUIRED"
}

The server response statuses which are not logged.

Hooks¶

SMB::log_policy ¶

Type: Log::PolicyHook

Read the Docs v: current (v5.1.0)

Versions: master; v5.1.0; v5.0.3; v5.0.2; v5.0.1; v5.0.0; v5.0.0-rc2; v5.0.0-rc1; v4.2.2; v4.2.1; v4.2.0; v4.1.1; v4.0.9; v4.0.8; v4.0.7; v4.0.6; v4.0.5; v4.0.4; v4.0.3; v4.0.2; v4.0.1; v4.0.0; v4.0.0-rc3; v4.0.0-rc2; v4.0.0-rc1; v3.2.3; v3.2.2; v3.2.1; v3.2.0; v3.2.0-rc1; v3.1.4; v3.1.3; v3.1.2; v3.1.1; v3.1.0; v3.1.0-rc; v3.0.14; v3.0.13; v3.0.12; v3.0.11; v3.0.10; v3.0.9; v3.0.8; v3.0.7; v3.0.6; v3.0.5; v3.0.4; v3.0.3; v3.0.2; v3.0.1; v3.0.0; topic-awelzel-parallel-doc-build; lts; devel; current

Downloads: html

On Read the Docs: Project Home; Builds