base/bif/plugins/Zeek_SMB.smb2_com_write.bif.zeek

GLOBAL
Namespace

GLOBAL

Summary

Events

smb2_write_request: event

Generated for SMB/CIFS version 2 requests of type write.

smb2_write_response: event

Generated for SMB/CIFS version 2 requests of type write.

Detailed Interface

Events

smb2_write_request
Type

event (c: connection, hdr: SMB2::Header, file_id: SMB2::GUID, offset: count, length: count)

Generated for SMB/CIFS version 2 requests of type write. This is sent by the client to write data to the file or named pipe on the server.

For more information, see MS-SMB2:2.2.21

Parameters
  • c – The connection.

  • hdr – The parsed header of the SMB version 2 message.

  • file_id – The GUID being used for the file.

  • offset – How far into the file this write should be taking place.

  • length – The number of bytes of the file being written.

See also: smb2_message

smb2_write_response
Type

event (c: connection, hdr: SMB2::Header, length: count)

Generated for SMB/CIFS version 2 requests of type write. This is sent by the server in response to a write request or named pipe on the server.

For more information, see MS-SMB2:2.2.22

Parameters
  • c – The connection.

  • hdr – The parsed header of the SMB version 2 message.

  • length – The number of bytes of the file being written.

See also: smb2_message