From 17512bb8db697b3b4ee441b913b77bf4feb20c97 Mon Sep 17 00:00:00 2001
From: jatkinosn <jeff.atkinosn@verizonmedia.com>
Date: Thu, 6 Jun 2019 10:06:58 -0400
Subject: [PATCH] Adding record to init-bare

---
 scripts/base/init-bare.zeek                | 5 +++++
 src/analyzer/protocol/rdp/rdp-protocol.pac | 4 ++--
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/scripts/base/init-bare.zeek b/scripts/base/init-bare.zeek
index adbd25052e..144c02737f 100644
--- a/scripts/base/init-bare.zeek
+++ b/scripts/base/init-bare.zeek
@@ -4276,6 +4276,11 @@ export {
 		dig_product_id:         string &optional;
 	};
 
+	type RDP::ClientSecurityData: record {
+		encryption_methods:	count;
+		ext_encryption_methods:	count;
+	};
+
 	## Name and flags for a single channel requested by the client.
 	type RDP::ClientChannelDef: record {
 		## A unique name for the channel
diff --git a/src/analyzer/protocol/rdp/rdp-protocol.pac b/src/analyzer/protocol/rdp/rdp-protocol.pac
index 930403d68b..442a0d1292 100644
--- a/src/analyzer/protocol/rdp/rdp-protocol.pac
+++ b/src/analyzer/protocol/rdp/rdp-protocol.pac
@@ -221,8 +221,8 @@ type Client_Core_Data = record {
 } &byteorder=littleendian;
 
 type Client_Security_Data = record {
-	encryption_methods:	uint16;
-	ext_encryption_methods:	uint16;
+	encryption_methods:	uint32;
+	ext_encryption_methods:	uint32;
 } &byteorder=littleendian;
 
 type Client_Network_Data = record {