base/bif/plugins/Zeek_SMB.smb2_com_write.bif.zeek

GLOBAL
Namespace:GLOBAL

Summary

Events

smb2_write_request: event Generated for SMB/CIFS version 2 requests of type write.
smb2_write_response: event Generated for SMB/CIFS version 2 requests of type write.

Detailed Interface

Events

smb2_write_request
Type:event (c: connection, hdr: SMB2::Header, file_id: SMB2::GUID, offset: count, length: count)

Generated for SMB/CIFS version 2 requests of type write. This is sent by the client to write data to the file or named pipe on the server.

For more information, see MS-SMB2:2.2.21

C:The connection.
Hdr:The parsed header of the SMB version 2 message.
File_id:The GUID being used for the file.
Offset:How far into the file this write should be taking place.
Length:The number of bytes of the file being written.

See also: smb2_message

smb2_write_response
Type:event (c: connection, hdr: SMB2::Header, length: count)

Generated for SMB/CIFS version 2 requests of type write. This is sent by the server in response to a write request or named pipe on the server.

For more information, see MS-SMB2:2.2.22

C:The connection.
Hdr:The parsed header of the SMB version 2 message.
Length:The number of bytes of the file being written.

See also: smb2_message