[Bro] Bro and NetBIOS
Vito Logrillo
vitologrillo at gmail.com
Mon Oct 20 03:50:07 PDT 2014
Hi,
i'm trying to use BRO to analyze data based on NetBIOS protocol: i'm using
BRO 2.3.1.
I've made a small script with these lines:
....snippet...
const NetBIOSports = { 138/udp, 139/tcp, 445/tcp};
event bro_init() &priority=5
{
Analyzer::register_for_ports(Analyzer::ANALYZER_NETBIOSSSN,NetBIOSports);
}
................
Below you can see my stderr.log:
Internal error: unknown analyzer name NETBIOS; mismatch with tag
analyzer::Component?
What does it mean?
Another question: SMB2.0 protocol is supported by BRO or not?
Thanks,
Vito
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20141020/57e59fad/attachment.html
More information about the Bro
mailing list