Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-04 07:38:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts
History
Arne Welzel 3ac877e20d scripts/smb2-main: Reset script-level state upon smb2_discarded_messages_state() 
This is similar to what the external corelight/zeek-smb-clear-state script
does, but leverages the smb2_discarded_messages_state() event instead of
regularly checking on the state of SMB connections.

The pcap was created using the dperson/samba container image and mounting
a share with Linux's CIFS filesystem, then copying the content of a
directory with 100 files. The test uses a BPF filter to imitate mostly
"half-duplex" traffic.
2023-05-03 11:22:01 +02:00
..
base scripts/smb2-main: Reset script-level state upon smb2_discarded_messages_state() 2023-05-03 11:22:01 +02:00
policy Merge remote-tracking branch 'origin/topic/awelzel/add-community-id' 2023-04-24 10:12:56 +02:00
site policy: Import zeek-community-id scripts into protocols/conn frameworks/notice 2023-04-24 09:43:19 +02:00
zeekygen mqtt: Move from policy/ into base/ 2022-11-30 10:14:20 +01:00
CMakeLists.txt Add base/misc/installation.zeek, with Zeek installation directories 2022-05-23 14:16:59 -07:00
test-all-policy.zeek Merge remote-tracking branch 'origin/topic/awelzel/add-community-id' 2023-04-24 10:12:56 +02:00