smb-smb_version: update test to match also responses

author Eloy Pérez González <zer1t0ps@protonmail.com>

Tue, 1 Mar 2022 14:56:06 +0000 (15:56 +0100)

committer Victor Julien <victor@inliniac.net>

Fri, 19 Jan 2024 12:02:14 +0000 (13:02 +0100)
author Eloy Pérez González <zer1t0ps@protonmail.com>
Tue, 1 Mar 2022 14:56:06 +0000 (15:56 +0100)
committer Victor Julien <victor@inliniac.net>
Fri, 19 Jan 2024 12:02:14 +0000 (13:02 +0100)
diff --git a/tests/smb-smb_version/test.rules b/tests/smb-smb_version/test.rules

index f03fbc1d16d6c699a59fa79e815ac03fd4d71cbd..466ffd712b9fd26d44186f67d728c439c0057d8b 100644 (file)
--- a/tests/smb-smb_version/test.rules
+++ b/tests/smb-smb_version/test.rules
@@ -1,3 +1,3 @@
  
-alert tcp any any -> any any (msg:"SMB1 Request";flow:to_server;smb.version:1;sid:1;)
-alert tcp any any -> any any (msg:"SMB2 Request";flow:to_server;smb.version:2;sid:2;)
+alert tcp any any -> any any (msg:"SMB1 Request"; smb.version:1;sid:1;)
+alert tcp any any -> any any (msg:"SMB2 Request"; smb.version:2;sid:2;)
diff --git a/tests/smb-smb_version/test.yaml b/tests/smb-smb_version/test.yaml

index 94f5a8efb365ae7c7705ce8fb3614b3f754aafcc..5996be71c6e24564f0fac78a2dac4022b6fb64bc 100644 (file)
--- a/tests/smb-smb_version/test.yaml
+++ b/tests/smb-smb_version/test.yaml
@@ -6,12 +6,12 @@ args:
  
  checks:
  - filter:
-    count: 1
+    count: 2
      match:
        event_type: alert
        alert.signature_id: 1
  - filter:
-    count: 7
+    count: 14
      match:
        event_type: alert
        alert.signature_id: 2
author	Eloy Pérez González <zer1t0ps@protonmail.com>
	Tue, 1 Mar 2022 14:56:06 +0000 (15:56 +0100)
committer	Victor Julien <victor@inliniac.net>
	Fri, 19 Jan 2024 12:02:14 +0000 (13:02 +0100)
tests/smb-smb_version/test.rules		patch \| blob \| blame \| history
tests/smb-smb_version/test.yaml		patch \| blob \| blame \| history