From: Victor Julien <victor@inliniac.net>
Date: Mon, 2 Dec 2019 19:57:59 +0000 (+0100)
Subject: smb: winreg is a DCERPC facility
X-Git-Tag: suricata-5.0.1~27
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a7ee2ffbde99ae6df24196ffe6cb1b85e60bb22d;p=thirdparty%2Fsuricata.git

smb: winreg is a DCERPC facility
---

diff --git a/rust/src/smb/smb.rs b/rust/src/smb/smb.rs
index ca9e357dbc..b381052224 100644
--- a/rust/src/smb/smb.rs
+++ b/rust/src/smb/smb.rs
@@ -1128,6 +1128,7 @@ impl SMBState {
                     Ok("lsarpc") => ("lsarpc", true),
                     Ok("samr") => ("samr", true),
                     Ok("spoolss") => ("spoolss", true),
+                    Ok("winreg") => ("winreg", true),
                     Ok("suricata::dcerpc") => ("unknown", true),
                     Err(_) => ("MALFORMED", false),
                     Ok(&_) => {