base/bif/plugins/Bro_SMB.smb2_com_set_info.bif.bro

GLOBAL
Namespace:GLOBAL
Source File:/scripts/base/bif/plugins/Bro_SMB.smb2_com_set_info.bif.bro

Summary

Events

smb2_file_delete: event Generated for SMB/CIFS version 2 requests of type set_info of the delete subtype.
smb2_file_rename: event Generated for SMB/CIFS version 2 requests of type set_info of the rename subtype.

Detailed Interface

Events

smb2_file_delete
Type:event (c: connection, hdr: SMB2::Header, file_id: SMB2::GUID, delete_pending: bool)

Generated for SMB/CIFS version 2 requests of type set_info of the delete subtype.

For more information, see MS-SMB2:2.2.39

C:The connection.
Hdr:The parsed header of the SMB version 2 message.
Delete_pending:A boolean value to indicate that a file should be deleted when it’s closed if set to T.

See also: smb2_message, smb2_file_rename

smb2_file_rename
Type:event (c: connection, hdr: SMB2::Header, file_id: SMB2::GUID, dst_filename: string)

Generated for SMB/CIFS version 2 requests of type set_info of the rename subtype.

For more information, see MS-SMB2:2.2.39

C:The connection.
Hdr:The parsed header of the SMB version 2 message.
File_id:A GUID to identify the file.
Dst_filename:The filename to rename the file into.

See also: smb2_message, smb2_file_delete


Table of Contents

Next Page

base/bif/plugins/Bro_SMB.smb2_com_tree_connect.bif.bro

Previous Page

base/bif/plugins/Bro_SMB.smb2_com_session_setup.bif.bro

Copyright 2016, The Bro Project. Last updated on December 07, 2018. Created using Sphinx 1.8.2.