suricata
Macros | Functions
detect-smb-ntlmssp.c File Reference
#include "suricata-common.h"
#include "detect-engine-register.h"
#include "detect.h"
#include "detect-parse.h"
#include "detect-engine.h"
#include "detect-engine-buffer.h"
#include "detect-engine-mpm.h"
#include "detect-engine-state.h"
#include "detect-engine-prefilter.h"
#include "detect-engine-content-inspection.h"
#include "detect-smb-ntlmssp.h"
#include "rust.h"
Include dependency graph for detect-smb-ntlmssp.c:

Go to the source code of this file.

Macros

#define BUFFER_NAME   "smb_ntlmssp_user"
 
#define KEYWORD_NAME   "smb.ntlmssp_user"
 
#define KEYWORD_ID   DETECT_SMB_NTLMSSP_USER
 
#define BUFFER_NAME   "smb_ntlmssp_domain"
 
#define KEYWORD_NAME   "smb.ntlmssp_domain"
 
#define KEYWORD_ID   DETECT_SMB_NTLMSSP_DOMAIN
 

Functions

void DetectSmbNtlmsspUserRegister (void)
 
void DetectSmbNtlmsspDomainRegister (void)
 

Detailed Description

Author
Eric Leblond el@st.nosp@m.amus.nosp@m.-netw.nosp@m.orks.nosp@m..com

Definition in file detect-smb-ntlmssp.c.

Macro Definition Documentation

◆ BUFFER_NAME [1/2]

#define BUFFER_NAME   "smb_ntlmssp_user"

Definition at line 41 of file detect-smb-ntlmssp.c.

◆ BUFFER_NAME [2/2]

#define BUFFER_NAME   "smb_ntlmssp_domain"

Definition at line 41 of file detect-smb-ntlmssp.c.

◆ KEYWORD_ID [1/2]

#define KEYWORD_ID   DETECT_SMB_NTLMSSP_USER

Definition at line 43 of file detect-smb-ntlmssp.c.

◆ KEYWORD_ID [2/2]

#define KEYWORD_ID   DETECT_SMB_NTLMSSP_DOMAIN

Definition at line 43 of file detect-smb-ntlmssp.c.

◆ KEYWORD_NAME [1/2]

#define KEYWORD_NAME   "smb.ntlmssp_user"

Definition at line 42 of file detect-smb-ntlmssp.c.

◆ KEYWORD_NAME [2/2]

#define KEYWORD_NAME   "smb.ntlmssp_domain"

Definition at line 42 of file detect-smb-ntlmssp.c.

Function Documentation

◆ DetectSmbNtlmsspDomainRegister()

void DetectSmbNtlmsspDomainRegister ( void  )

Definition at line 133 of file detect-smb-ntlmssp.c.

References ALPROTO_SMB, BUFFER_NAME, SigTableElmt_::desc, DetectAppLayerInspectEngineRegister(), DetectAppLayerMpmRegister(), DetectBufferTypeGetByName(), DetectEngineInspectBufferGeneric(), SigTableElmt_::flags, KEYWORD_ID, KEYWORD_NAME, SigTableElmt_::name, PrefilterGenericMpmRegister(), SigTableElmt_::Setup, SIG_FLAG_TOSERVER, SIGMATCH_INFO_STICKY_BUFFER, SIGMATCH_NOOPT, and sigmatch_table.

Referenced by SigTableSetup().

Here is the call graph for this function:
Here is the caller graph for this function:

◆ DetectSmbNtlmsspUserRegister()

void DetectSmbNtlmsspUserRegister ( void  )

Definition at line 77 of file detect-smb-ntlmssp.c.

References ALPROTO_SMB, BUFFER_NAME, SigTableElmt_::desc, DetectAppLayerInspectEngineRegister(), DetectAppLayerMpmRegister(), DetectBufferTypeGetByName(), DetectEngineInspectBufferGeneric(), SigTableElmt_::flags, KEYWORD_ID, KEYWORD_NAME, SigTableElmt_::name, PrefilterGenericMpmRegister(), SigTableElmt_::Setup, SIG_FLAG_TOSERVER, SIGMATCH_INFO_STICKY_BUFFER, SIGMATCH_NOOPT, and sigmatch_table.

Referenced by SigTableSetup().

Here is the call graph for this function:
Here is the caller graph for this function: