base/bif/plugins/Zeek_SMB.smb2_com_read.bif.zeek

GLOBAL
Namespace

GLOBAL

Summary

Events

smb2_read_request: event

Generated for SMB/CIFS version 2 requests of type read.

Detailed Interface

Events

smb2_read_request
Type

event (c: connection, hdr: SMB2::Header, file_id: SMB2::GUID, offset: count, length: count)

Generated for SMB/CIFS version 2 requests of type read. This is sent by the client to request a read operation on the specified file.

For more information, see MS-SMB2:2.2.19

Parameters
  • c – The connection.

  • hdr – The parsed header of the SMB version 2 message.

  • file_id – The GUID being used for the file.

  • offset – How far into the file this read should be taking place.

  • length – The number of bytes of the file being read.

See also: smb2_message