base/bif/plugins/Zeek_SMB.smb2_com_create.bif.zeek

GLOBAL
Namespace

GLOBAL

Summary

Events

smb2_create_request: event

Generated for SMB/CIFS version 2 requests of type create.

smb2_create_response: event

Generated for SMB/CIFS version 2 responses of type create.

Detailed Interface

Events

smb2_create_request
Type

event (c: connection, hdr: SMB2::Header, request: SMB2::CreateRequest)

Generated for SMB/CIFS version 2 requests of type create. This is sent by the client to request either creation of or access to a file.

For more information, see MS-SMB2:2.2.13

Parameters
  • c – The connection.

  • hdr – The parsed header of the SMB version 2 message.

  • request – A record with more information related to the request.

See also: smb2_message, smb2_create_response

smb2_create_response
Type

event (c: connection, hdr: SMB2::Header, response: SMB2::CreateResponse)

Generated for SMB/CIFS version 2 responses of type create. This is sent by the server to notify the client of the status of its SMB2 CREATE request.

For more information, see MS-SMB2:2.2.14

Parameters
  • c – The connection.

  • hdr – The parsed header of the SMB version 2 message.

  • response – A record with more information related to the response.

See also: smb2_message, smb2_create_request