base/bif/plugins/Zeek_SMB.smb2_com_read.bif.zeek¶

GLOBAL¶

Namespace: GLOBAL

Summary¶

Events¶

smb2_read_request: event

Generated for SMB/CIFS version 2 requests of type read.

Detailed Interface¶

Events¶

smb2_read_request¶

Type: event (c: connection, hdr: SMB2::Header, file_id: SMB2::GUID, offset: count, length: count)

Generated for SMB/CIFS version 2 requests of type read. This is sent by the client to request a read operation on the specified file.

For more information, see MS-SMB2:2.2.19

C: The connection.
Hdr: The parsed header of the SMB version 2 message.
File_id: The GUID being used for the file.
Offset: How far into the file this read should be taking place.
Length: The number of bytes of the file being read.

See also: smb2_message

Read the Docs v: v5.1.3

Versions: master; v5.2.0-rc1; v5.1.3; v5.1.2; v5.1.1; v5.1.0; v5.0.7; v5.0.6; v5.0.5; v5.0.4; v5.0.3; v5.0.2; v5.0.1; v5.0.0; v4.2.2; v4.2.1; v4.2.0; v4.1.1; v4.0.9; v4.0.8; v4.0.7; v4.0.6; v4.0.5; v4.0.4; v4.0.3; v4.0.2; v4.0.1; v4.0.0; v3.2.3; v3.2.2; v3.2.1; v3.2.0; v3.1.4; v3.1.3; v3.1.2; v3.1.1; v3.1.0; v3.0.14; v3.0.13; v3.0.12; v3.0.11; v3.0.10; v3.0.9; v3.0.8; v3.0.7; v3.0.6; v3.0.5; v3.0.4; v3.0.3; v3.0.2; v3.0.1; v3.0.0; lts; devel; current

Downloads

On Read the Docs: Project Home; Builds