base/bif/plugins/Bro_SMB.smb1_com_tree_connect_andx.bif.bro

GLOBAL
Namespace:GLOBAL
Source File:/scripts/base/bif/plugins/Bro_SMB.smb1_com_tree_connect_andx.bif.bro

Summary

Events

smb1_tree_connect_andx_request: event Generated for SMB/CIFS version 1 requests of type tree connect andx.
smb1_tree_connect_andx_response: event Generated for SMB/CIFS version 1 responses of type tree connect andx.

Detailed Interface

Events

smb1_tree_connect_andx_request
Type:event (c: connection, hdr: SMB1::Header, path: string, service: string)

Generated for SMB/CIFS version 1 requests of type tree connect andx. This is sent by the client to establish a connection to a server share.

For more information, see MS-CIFS:2.2.4.55

C:The connection.
Hdr:The parsed header of the SMB version 1 message.
Path:The path attribute specified in the message.
Service:The service attribute specified in the message.

See also: smb1_message, smb1_tree_connect_andx_response

smb1_tree_connect_andx_response
Type:event (c: connection, hdr: SMB1::Header, service: string, native_file_system: string)

Generated for SMB/CIFS version 1 responses of type tree connect andx. This is the server reply to the tree connect andx request.

For more information, see MS-CIFS:2.2.4.55

C:The connection.
Hdr:The parsed header of the SMB version 1 message.
Service:The service attribute specified in the message.
Native_file_system:
 The file system of the remote server as indicate by the server.

See also: smb1_message, smb1_tree_connect_andx_request

Copyright 2016, The Bro Project. Last updated on October 21, 2017. Created using Sphinx 1.5.2.