fleet/schema/tables/suid_bin.yml

name: suid_bin
examples: >-
  Identify unsigned executables with suid privileges.

  ```

  SELECT s.path, s.username, s.permissions, sig.signed, sig.team_identifier, sig.authority FROM suid_bin s JOIN signature sig on s.path = sig.path WHERE sig.signed='0';

  ```
columns:
  - name: pid_with_namespace
    platforms:
      - linux
Add Fleet override schema files (#8278) * create schema/tables, add yaml schema tables * Update osquery-table-details.ejs * Generate schema from schema/tables/ folder * Create generate-yaml-tables-from-json.js * update created table files * update fleet override validation * update error messages, add fleetRepoUrl * Delete generate-yaml-tables-from-json.js * Update osquery-table-details.ejs * Update whitespace in table examples * Revert "Update osquery-table-details.ejs" This reverts commit 2e9d63208f59997d492375ebaf1d0ec7e4afe468. * add YAML tables generated from updated Fleet schema * lint fixes * update arp_cache and docker_containers tables 2022-10-18 19:13:42 +00:00			`name: suid_bin`
			`examples: >-`
			`Identify unsigned executables with suid privileges.`

			```

			`SELECT s.path, s.username, s.permissions, sig.signed, sig.team_identifier, sig.authority FROM suid_bin s JOIN signature sig on s.path = sig.path WHERE sig.signed='0';`

			```
			`columns:`
			`- name: pid_with_namespace`
			`platforms:`
			`- linux`