A Zeek package to detect CVE-2022-26937, a vulnerability in the Network Lock Manager (NLM) protocol in Windows NFS server.
CVE-2022-26937 A package to detect CVE-2022-26937, a vulnerability in Microsoft's NFS implementation Example You can run this logic on the included PCAP in the testing\traces directory: $ zeek -Cr CVE-2022-26937-exploitedpcap ~/Source/CVE-2022-26937/scripts/__load__zeek $ cat noticelog #separator \x09 #set_separator , #empty_field (empty) #unset_field - #path notice