empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 17:05:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4,709 Commits 3 Branches 0 Tags 561 MiB
ef73039559
Commit Graph

22 Commits

Author SHA1 Message Date
Juan Fernandez
ef73039559
Improve vulnerability detection for Ubuntu (#6102) 
Feature: Improve our capability to detect vulnerable software on Ubuntu hosts

To improve the capability of detecting vulnerable software on Ubuntu, we are now using OVAL definitions to detect vulnerable software on Ubuntu hosts. If data sync is enabled (disable_data_sync=false) OVAL definitions are automatically kept up to date (they are 'refreshed' once per day) - there's also the option to manually download the OVAL definitions using the 'fleetctl vulnerability-data-stream' command. Downloaded definitions are then parsed into an intermediary format and then used to identify vulnerable software on Ubuntu hosts. Finally, any 'recent' detected vulnerabilities are sent to any third-party integrations.
 2022-06-07 21:09:47 -04:00
Lucas Manuel Rodriguez
e0d7318236
Fix osquery-perf bug introduced in orbit_info handling (#5986) 2022-06-01 13:57:44 -03:00
Michal Nicpon
1da9425869
make softare actually unique for osquery perf (#5956) 2022-05-31 10:37:57 -06:00
Lucas Manuel Rodriguez
0b511ccd1e
Add orbit_info support to osquery-perf (#5922) 
* Add support for orbit_info to osquery-perf

* Add orbit_info support to osquery-perf

* Use 0.5 as default for orbit_info

* Fix CodeQL security warning on osquery-perf
 2022-05-31 10:15:58 -03:00
Desmi-Dizney
998b9311fb
Editor pass - Collect last_opened_at for macOS software, and return it in host details payload (#5414) 
Editor pass for: https://github.com/fleetdm/fleet/pull/5376 -  
cmd/osquery-perf/README.md
 2022-04-29 09:19:13 -05:00
Martin Angers
5931523e5f
Return -1 if there is no last_opened_at timestamp (#5404) 2022-04-27 09:33:50 -04:00
Martin Angers
253baee657
Collect last_opened_at for macOS software, and return it in host details payload (#5376) 2022-04-26 14:16:59 -04:00
Martin Angers
90b15071a4
Introduce API version 2022-04, deprecate use of /global in paths (#4731) 2022-04-05 11:35:53 -04:00
Martavis Parker
fc5c0e17d5
trimming vuln software json to fix on windows (#4084) 2022-02-14 12:14:26 -03:00
Tomas Touceda
fe47a7385d
Remove escaped parethesis (#3952) 2022-01-31 18:18:22 -03:00
Tomas Touceda
e956b0ba04
Add filter software by CVE and make osquery-perf also push vulnerable software (#3902) 
* Add filter software by CVE and make osquery-perf also push vulnerable software

* Update based on review comments
 2022-01-28 10:05:11 -03:00
Martin Angers
1e2059585a
Add support for google chrome profiles (#3423) 2021-12-21 15:36:19 -05:00
Tomas Touceda
39e71c6d77
Add mdm and munki (#3406) 
* Draft for mdm and munki as direct ingest funcs

* Expose mdm/munki over API

* Add test for service and fix bug

* Update queries test

* Fix lint

* Address review comments
 2021-12-21 09:37:58 -03:00
Lucas Manuel Rodriguez
fac83f6b11
Add unique host users to osquery-perf (#3255) 
* Add unique software option to osquery-perf

* Add unique host users

Co-authored-by: Tomas Touceda <chiiph@gmail.com>
 2021-12-09 18:24:48 -03:00
Lucas Manuel Rodriguez
b9c65abc6a
Add unique software option to osquery-perf (#3253) 
Co-authored-by: Tomas Touceda <chiiph@gmail.com>
 2021-12-09 18:05:32 -03:00
Tomas Touceda
4df7093395
Osquery perf add scheduled query stats (#3252) 
* Add scheduled queries to osquery perf

* Remove log line

* Update parsing of packs to be more readable

* Remove log
 2021-12-09 17:20:32 -03:00
Martin Angers
c997f853e5
Make creation of http.Client uniform across the codebase (#3097) 2021-11-24 15:56:54 -05:00
Lucas Manuel Rodriguez
d1dcc0e78a
Add probability of policy pass flag to osquery-perf (#3014) 2021-11-19 08:50:25 -03:00
Lucas Manuel Rodriguez
8642bb785e
Add MVP support for software inventory to osquery-perf for load testing (#2751) 
* Add MVP support for software inventory to osquery-perf for load testing

* Fix test compile
 2021-11-01 15:23:31 -03:00
Zach Wasserman
1de7b8c4ca
Update osquery-perf readme (#2573) 2021-10-19 11:54:45 -07:00
Tomas Touceda
825939e3dc
Improve osquery perf (#2503) 
* Improve osquery perf

* Update dependencies

* Embed template so this can be run from the root of the repo

* Fix lint

* Address review comments
 2021-10-14 10:09:58 -03:00
Tomas Touceda
8600d71d35
Add osquery perf (#2190) 
* Add osquery perf

* Update dockerfile and gh action
 2021-09-22 17:18:55 -03:00