mirror of
https://github.com/zeek/zeek.git
synced 2025-10-10 02:28:21 +00:00
20 lines
588 B
Text
20 lines
588 B
Text
# @TEST-EXEC: bro -r $TRACES/smb/smb2.pcap %INPUT
|
|
# @TEST-EXEC: btest-diff smb_files.log
|
|
# @TEST-EXEC: btest-diff smb_mapping.log
|
|
# @TEST-EXEC: btest-diff files.log
|
|
# @TEST-EXEC: test ! -f dpd.log
|
|
# @TEST-EXEC: test ! -f weird.log
|
|
# @TEST-EXEC: btest-diff .stdout
|
|
|
|
@load policy/protocols/smb
|
|
|
|
event smb2_create_request(c: connection, hdr: SMB2::Header, request: SMB2::CreateRequest )
|
|
{
|
|
print "smb2_create_request", c, hdr, request;
|
|
}
|
|
|
|
event smb2_create_response(c: connection, hdr: SMB2::Header, response: SMB2::CreateResponse )
|
|
{
|
|
print "smb2_create_response", c, hdr, response;
|
|
}
|
|
|