base/bif/plugins/Zeek_SMB.smb1_com_session_setup_andx.bif.zeek

GLOBAL
Namespace

GLOBAL

Summary

Events

smb1_session_setup_andx_request: event

Generated for SMB/CIFS version 1 requests of type setup andx.

smb1_session_setup_andx_response: event

Generated for SMB/CIFS version 1 responses of type setup andx.

Detailed Interface

Events

smb1_session_setup_andx_request
Type

event (c: connection, hdr: SMB1::Header, request: SMB1::SessionSetupAndXRequest)

Generated for SMB/CIFS version 1 requests of type setup andx. This is sent by the client to configure an SMB session.

For more information, see MS-CIFS:2.2.4.53

Parameters
  • c – The connection.

  • hdr – The parsed header of the SMB version 1 message.

  • request – The parsed request data of the SMB message. See init-bare for more details.

See also: smb1_message, smb1_session_setup_andx_response

smb1_session_setup_andx_response
Type

event (c: connection, hdr: SMB1::Header, response: SMB1::SessionSetupAndXResponse)

Generated for SMB/CIFS version 1 responses of type setup andx. This is the server response to the setup andx request.

For more information, see MS-CIFS:2.2.4.53

Parameters
  • c – The connection.

  • hdr – The parsed header of the SMB version 1 message.

  • response – The parsed response data of the SMB message. See init-bare for more details.

See also: smb1_message, smb1_session_setup_andx_request