zeek/scripts/base/protocols/smb at eb3bea4e4a9834daf4bcb20060a8caa2620c1c72 - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Arne Welzel e9fa853048 smb1: Ensure existence of dialect_index in offered dialects When a negotiate request offers no dialects, but the response contains an ntlm record which selects a dialect, a script error is triggered. $ zeek -C -r ./f2b0e.pcap 'DPD::ignore_violations+={ Analyzer::ANALYZER_SMB }' 1668615340.837882 expression error in /home/awelzel/corelight-oss/zeek/scripts/base/protocols/smb/./smb1-main.zeek, line 96: no such index (SMB1::c$smb_state$current_cmd$smb1_offered_dialects[SMB1::response$ntlm$dialect_index]) Script error triggered by fuzzing when testing Tim's all-the-fuzzing branch.		2022-11-16 17:49:55 +01:00
..
__load__.zeek	Rename all scripts to have ".zeek" file extension	2019-04-11 21:12:40 -05:00
const-dos-error.zeek	Rename all scripts to have ".zeek" file extension	2019-04-11 21:12:40 -05:00
const-nt-status.zeek	Rename all scripts to have ".zeek" file extension	2019-04-11 21:12:40 -05:00
consts.zeek	fix for ill-formed (complex) &default function	2022-03-31 19:31:21 -07:00
dpd.sig	Enable SMB by default by moving scripts from policy/ to base/	2018-08-16 17:23:28 -05:00
files.zeek	scripts: Migrate table iteration to blank identifiers	2022-10-24 10:36:09 +02:00
main.zeek	scripts: Migrate table iteration to blank identifiers	2022-10-24 10:36:09 +02:00
README	Enable SMB by default by moving scripts from policy/ to base/	2018-08-16 17:23:28 -05:00
smb1-main.zeek	smb1: Ensure existence of dialect_index in offered dialects	2022-11-16 17:49:55 +01:00
smb2-main.zeek	Spelling fixes: scripts	2022-11-02 17:36:39 -04:00

README

Support for SMB protocol analysis.