Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts/base/protocols/smb
History
Seth Hall e2dfaf8a5b Fixes to SMB file handling and logging. 
There were some cases where the log would be missing a field
or data wouldn't get sent to file analysis.  At least some of
this is fixed now and I get confused a bit less when I look
at the logs now.

Also, I made the default handling "FILE" so that things like
FILE_UNKNOWN wouldn't show up in the logs so regularly.  It's
technically correct that way, but it doesn't look good and it's
correct as FILE often enough that it make sense to make it the
default I think.
2016-04-01 09:43:13 -04:00
..
__load__.bro Add a signature for SMB 2016-03-07 16:03:31 -05:00
const-dos-error.bro SMB & NTLM analyzers. 2014-07-24 21:46:38 -04:00
const-nt-status.bro SMB & NTLM analyzers. 2014-07-24 21:46:38 -04:00
consts.bro Redo DCE/RPC code. 2014-10-09 21:06:38 -04:00
dpd.sig Add a signature for SMB 2016-03-07 16:03:31 -05:00
files.bro Fixes to SMB file handling and logging. 2016-04-01 09:43:13 -04:00
main.bro Fixes to SMB file handling and logging. 2016-04-01 09:43:13 -04:00
pipe.bro A lot of changes to SMB analyzer. 2016-03-03 14:27:15 -05:00
smb1-main.bro Fixes to SMB file handling and logging. 2016-04-01 09:43:13 -04:00
smb2-main.bro Fixes to SMB file handling and logging. 2016-04-01 09:43:13 -04:00