mirror of
https://github.com/empayre/fleet.git
synced 2024-11-06 00:45:19 +00:00
e82962e4a7
* create schema/tables, add yaml schema tables * Update osquery-table-details.ejs * Generate schema from schema/tables/ folder * Create generate-yaml-tables-from-json.js * update created table files * update fleet override validation * update error messages, add fleetRepoUrl * Delete generate-yaml-tables-from-json.js * Update osquery-table-details.ejs * Update whitespace in table examples * Revert "Update osquery-table-details.ejs" This reverts commit 2e9d63208f59997d492375ebaf1d0ec7e4afe468. * add YAML tables generated from updated Fleet schema * lint fixes * update arp_cache and docker_containers tables
47 lines
834 B
YAML
47 lines
834 B
YAML
name: processes
|
|
examples: >-
|
|
List executables listening on network ports.
|
|
|
|
```
|
|
|
|
SELECT l.port, l.pid, p.name, p.path FROM listening_ports l JOIN processes p USING (pid);
|
|
|
|
```
|
|
columns:
|
|
- name: elevated_token
|
|
platforms:
|
|
- windows
|
|
- name: secure_process
|
|
platforms:
|
|
- windows
|
|
- name: protection_type
|
|
platforms:
|
|
- windows
|
|
- name: virtual_process
|
|
platforms:
|
|
- windows
|
|
- name: elapsed_time
|
|
platforms:
|
|
- windows
|
|
- name: handle_count
|
|
platforms:
|
|
- windows
|
|
- name: percent_processor_time
|
|
platforms:
|
|
- windows
|
|
- name: upid
|
|
platforms:
|
|
- darwin
|
|
- name: uppid
|
|
platforms:
|
|
- darwin
|
|
- name: cpu_type
|
|
platforms:
|
|
- darwin
|
|
- name: cpu_subtype
|
|
platforms:
|
|
- darwin
|
|
- name: translated
|
|
platforms:
|
|
- darwin
|