tests/dcerpc: fix event log check

author Victor Julien <victor@inliniac.net>

Thu, 26 Nov 2020 11:48:10 +0000 (12:48 +0100)

committer Victor Julien <victor@inliniac.net>

Thu, 26 Nov 2020 11:48:10 +0000 (12:48 +0100)
author Victor Julien <victor@inliniac.net>
Thu, 26 Nov 2020 11:48:10 +0000 (12:48 +0100)
committer Victor Julien <victor@inliniac.net>
Thu, 26 Nov 2020 11:48:10 +0000 (12:48 +0100)
diff --git a/tests/dcerpc/dcerpc-udp/test.yaml b/tests/dcerpc/dcerpc-udp/test.yaml

index 8c7e3bbdfff9c0544855f00a07c33348ea46a638..2bfae8a2e0ef78757a04e7c0be46986a2da19f7f 100644 (file)
--- a/tests/dcerpc/dcerpc-udp/test.yaml
+++ b/tests/dcerpc/dcerpc-udp/test.yaml
@@ -6,17 +6,15 @@ args:
  
  checks:
  - filter:
-    count: 1
+    count: 8
      match:
-      dcerpc.request: REQUEST_LOST
+      dcerpc.request: REQUEST
        dcerpc.response: UNREPLIED
-      dest_ip: 141.81.0.10
-      dest_port: 33000
+      dcerpc.activityuuid: "00000000-0000-0000-0000-000000000000"
+      dcerpc.seqnum: 0
+      dcerpc.rpc_version: "4.0"
        event_type: dcerpc
-      pcap_cnt: 1169
        proto: UDP
-      src_ip: 141.81.0.11
-      src_port: 33002
  - filter:
      count: 1
      match:
author	Victor Julien <victor@inliniac.net>
	Thu, 26 Nov 2020 11:48:10 +0000 (12:48 +0100)
committer	Victor Julien <victor@inliniac.net>
	Thu, 26 Nov 2020 11:48:10 +0000 (12:48 +0100)