Attack: SMBScan
Jens Keim edited this page 6 years ago

The SMBScanAttack currently supports the following attack parameters:

Field name Description
hosting.ip IP address(es) of hosting targets.
hosting.version Protocol (SMB) version of hosts.
inject.at-timestamp Starts injecting the attack at the given unix timestamp
inject.after-pkt Starts injecting the attack after the given packet number
ip.src IP address of the attacker
ip.src.shuffle Randomizes the source IP address if ip.src is a list of ip address
ip.dst IP address(es) of the victim
mac.src MAC address of the attacker
mac.dst MAC address of the victim
packets.per-second Number of packets sent per second by the attacker
port.src Ports used by the attacker
port.src.shuffle Randomizes the source ports if port.src is a list of ports
protocol.version Protocol (SMB) version of attacker.
src.platform OS of attcking system.