policy/protocols/smb/log-cmds.zeek

SMB

Load this script to generate an SMB command log, smb_cmd.log. This is primarily useful for debugging.

Namespace:: SMB
Imports:: base/protocols/smb

Summary

Runtime Options

SMB::ignored_command_statuses: set &redef

The server response statuses which are not logged.

Redefinitions

Log::ID: enum

SMB::CMD_LOG

Hooks

SMB::log_policy: Log::PolicyHook

Detailed Interface

Runtime Options

SMB::ignored_command_statuses 

Type:

set [string]

Attributes:

Default:

{
   "MORE_PROCESSING_REQUIRED"
}

The server response statuses which are not logged.

Hooks

SMB::log_policy 

Type:: Log::PolicyHook