base/bif/plugins/Zeek_SMB.smb2_com_write.bif.zeek

GLOBAL
Namespace

GLOBAL

Summary

Events

smb2_write_request: event

Generated for SMB/CIFS version 2 requests of type write.

smb2_write_response: event

Generated for SMB/CIFS version 2 requests of type write.

Detailed Interface

Events

smb2_write_request
Type

event (c: connection, hdr: SMB2::Header, file_id: SMB2::GUID, offset: count, length: count)

Generated for SMB/CIFS version 2 requests of type write. This is sent by the client to write data to the file or named pipe on the server.

For more information, see MS-SMB2:2.2.21

C

The connection.

Hdr

The parsed header of the SMB version 2 message.

File_id

The GUID being used for the file.

Offset

How far into the file this write should be taking place.

Length

The number of bytes of the file being written.

See also: smb2_message

smb2_write_response
Type

event (c: connection, hdr: SMB2::Header, length: count)

Generated for SMB/CIFS version 2 requests of type write. This is sent by the server in response to a write request or named pipe on the server.

For more information, see MS-SMB2:2.2.22

C

The connection.

Hdr

The parsed header of the SMB version 2 message.

Length

The number of bytes of the file being written.

See also: smb2_message