base/bif/plugins/Bro_SMB.smb1_com_query_information.bif.bro

GLOBAL
Namespace:GLOBAL
Source File:/scripts/base/bif/plugins/Bro_SMB.smb1_com_query_information.bif.bro

Summary

Events

smb1_query_information_request: event Generated for SMB/CIFS version 1 requests of type query information.

Detailed Interface

Events

smb1_query_information_request
Type:event (c: connection, hdr: SMB1::Header, filename: string)

Generated for SMB/CIFS version 1 requests of type query information. This is a deprecated command which has been replaced by the trans2_query_path_information subcommand. This is used by the client to obtain attribute information about a file.

For more information, see MS-CIFS:2.2.4.9

C:The connection.
Hdr:The parsed header of the SMB version 1 message.
Filename:The filename that the client is querying.

See also: smb1_message, smb1_transaction2_request

Copyright 2016, The Bro Project. Last updated on December 12, 2017. Created using Sphinx 1.5.2.