Seth Hall
520ac8d92c
Merge remote-tracking branch 'origin/master' into topic/seth/smb
...
# Conflicts:
# scripts/base/protocols/dce-rpc/main.bro
# scripts/base/protocols/ntlm/main.bro
# scripts/policy/protocols/smb/smb1-main.bro
# src/analyzer/protocol/smb/smb-common.pac
# src/analyzer/protocol/smb/smb-strings.pac
# src/analyzer/protocol/smb/smb1-com-locking-andx.pac
# src/analyzer/protocol/smb/smb1-com-logoff-andx.pac
# src/analyzer/protocol/smb/smb1-com-nt-create-andx.pac
# src/analyzer/protocol/smb/smb1-com-open-andx.pac
# src/analyzer/protocol/smb/smb1-com-read-andx.pac
# src/analyzer/protocol/smb/smb1-com-session-setup-andx.pac
# src/analyzer/protocol/smb/smb1-com-transaction-secondary.pac
# src/analyzer/protocol/smb/smb1-com-transaction.pac
# src/analyzer/protocol/smb/smb1-com-tree-connect-andx.pac
# src/analyzer/protocol/smb/smb1-com-write-andx.pac
# src/analyzer/protocol/smb/smb1-protocol.pac
2016-08-08 15:46:49 -04:00
Robin Sommer
2a854acd2b
Revert "Merge branch 'topic/seth/smb'"
...
This reverts commit 9d9c7bafd3eeb8c0cbb0
2016-08-05 15:04:49 -07:00
Seth Hall
5721db4be7
Lots of cleanup and improvement to DCE/RPC analyzer.
...
- It works with DCE/RPC over SMB1+2 now.
- Using named pipes in 1+2 and the transaction cmd in SMB1.
- Base scripts based on work by Josh Liburdi.
- New dce_rpc.log. Feedback on how to make this log more compact
and useful would be appreciated.
2016-04-01 09:38:52 -04:00
