valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-08 02:18:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4,498 Commits 2 Branches 109 Tags 25 MiB
140f2bd72f
Commit Graph

4498 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Max Kareta
bf391e5b83
reworked core cmakefiles.txt (#4443) 2018-05-30 00:04:52 +01:00
Javier Marcos
2b27057fc6 Adding ubuntu 18.04 to Vagrantfile (#4447) 2018-05-29 10:59:58 -07:00
Alexander
422c1400b8
Simple solution to reduce drift time in loop of scheduled queries (#4393) 
* Simple solution to reduce drift time in loop of scheduled queries #4301

based on measuring time of loop step and reduce sleep time on it.

* Change schedule time drift compensation policy

Sleep less time or do not sleep at all if there is non-zero accumulated drift.
Also new flag [schedule_max_drift] was added to make it configurable.

* Add test to check time drift accumulation and fix up code according review comments
 2018-05-29 18:48:43 +01:00
Giorgi Guliashvili
b2533f8bf9 cpu_type fixed for linux (#4425) 2018-05-29 10:53:09 +01:00
Filipe Manco
c485474ad6
Enable configure() calls on logger plugins (#4434) 2018-05-29 09:58:07 +01:00
Max Kareta
deff17a8e7
split registry to separate classes (#4444) 2018-05-28 20:16:04 +01:00
Teddy Reed
2966ac5187
deps: Patch RapidJSON to remove march native (#4441) 2018-05-26 23:54:46 -04:00
Teddy Reed
345eae9c72
deps: Update sleuthkit to version 4.6.1 (#4440) 2018-05-26 23:31:23 -04:00
Teddy Reed
4ae57f43a9
deps: Update libdpkg to version 1.19.0.5 (#4439) 2018-05-26 23:02:22 -04:00
Teddy Reed
9e98cefd22
deps: Update aws-sdk-cpp to version 1.4.55 (#4437) 2018-05-26 22:09:33 -04:00
Teddy Reed
71adc08eef
deps: Simplify LLVM includes (#4436) 2018-05-26 21:45:15 -04:00
Teddy Reed
a686df0047
deps: Allow GCC 7 to build glibc-legacy 2.13 (#4435) 2018-05-26 18:13:07 -04:00
Alexander
ff4f90ca81 Remove unused member from SchedulerRunner class (#4430) 2018-05-25 21:44:35 +01:00
Allan Liu
083c57e3f0 tables: memory related SMBIOS tables (#4409) 2018-05-25 21:29:43 +01:00
Drake Aronhalt
408d002403 Adding readonly_rootfs field to docker_containers table. (#4419) 2018-05-25 17:54:15 +01:00
Filipe Manco
67f95baf6e
Fix files with no new line at eof (#4426) 2018-05-24 20:12:31 +01:00
Rutwa189
3de45f5abb Improve Python packages table (#4407) 2018-05-24 09:14:44 -07:00
Yuan Lei
b95575e260 bug: fix osquery warn for non exist file (#4424) 2018-05-24 16:55:27 +01:00
Max Kareta
6047e7d6f8
Added custom path functions (#4265) 2018-05-24 12:26:43 +01:00
Filipe Manco
584c5ddcbd
Make tags targets PHONY (#4413) 2018-05-22 18:28:56 +01:00
Filipe Manco
9bfc6eb7a3
Remove useless links on debug package creation (#4412) 2018-05-22 18:27:46 +01:00
Filipe Manco
12b3099fe4
Add make debug_clean target (#4410) 2018-05-22 18:26:39 +01:00
Max Kareta
a4f1bedc63
Fixing memory leak in mdfind table (#4406) 2018-05-22 13:08:13 +01:00
Max Kareta
b92b8a078a
Fixed over release of object on osx (#4404) 2018-05-22 13:07:43 +01:00
Max Kareta
bf82fca620
[osx] added autorelease pools (#4405) 2018-05-21 14:41:02 +01:00
Filipe Manco
892fa79e75
Fix debuginfo build-id subdirectory (#4401) 2018-05-18 18:41:12 +01:00
Alexander
8de02701f2 Apply const qualifier for Config::packs(...) method (#4387) 2018-05-18 18:37:33 +01:00
Teddy Reed
201dd6d940 packs: Fix blacklist option bool assumption (#4400) 2018-05-18 11:58:59 +01:00
Teddy Reed
b4c7abb2b8
http_client: Always close socket on exception (#4399) 2018-05-17 23:26:25 -04:00
Seshu Pasam
b49feec0d3 aws: Deal with missing uuid file on C5/M5 instances. (#4397) 2018-05-17 22:33:34 -04:00
Allan Liu
1c38b7626d tables: add link_speed column to interface_details for linux (#4320) 2018-05-17 14:35:20 -07:00
Allan Liu
a110c291fa tables: Virtual table implemention for memory devices from SMBIOS (#4138) 2018-05-17 17:33:35 -04:00
Steve Brito
c52276879a tables: adding bios_info table for Windows. (#4118) 2018-05-17 13:49:33 -07:00
Chris Long
8c815f27b5 packs: Adding MacSeach adware to osx-attacks (#4394) 2018-05-16 20:59:17 -07:00
Scott Lundgren
89fe2dc693 update building documentation to reference Windows (#4389) 2018-05-16 23:36:11 -04:00
Ben Isaacs
8fca2a21c1 add documentation for alf global_state (#4247) 2018-05-16 22:43:37 -04:00
Mohamed Bassem
fa96157301 Fixing OSQUERY_DEPS in building documentation (#4390) 2018-05-15 11:48:36 +01:00
Ngo The Trung
b748386ddb mac: add 'state' to process_open_sockets (#4253) 2018-05-15 11:28:42 +01:00
Nick Anderson
a338c86170
tables: adding user_groups table for Windows (#4217) 2018-05-14 16:48:16 -07:00
Giorgi Guliashvili
58969a1df7 Removed startup_items from linux platform. (#4373) 2018-05-14 23:50:28 +01:00
Teddy Reed
6e9f55d15d
llvm 6.0 and libFuzzer implementation (#4370) 2018-05-12 21:56:00 -04:00
cankansin
122b3867bd wrong variable name, content should be config (#4385) 2018-05-12 10:23:41 -07:00
Jonathan Keljo
1ea714a325 Plumb used columns into QueryContext; use that to make processes table more efficient on macOS (#4269) 2018-05-12 09:07:57 -07:00
James Jerger
a5df5acc01 Refactor tables to bail out early on error. Add encryption method to bitlocker_info. (#4337) 2018-05-11 22:57:16 -07:00
Nick Anderson
e50a38490b
bug: wait for service thread to finish before exiting with SCM (#4386) 2018-05-11 14:30:16 -07:00
Filipe Manco
74cee943f3
Handle placeholder hardware UUIDs (#4374) 2018-05-11 21:35:33 +01:00
Alexander
bfb6c13674 Add const qualifier to some Config methods (#4383) 2018-05-11 09:36:48 +01:00
Andrew Guthrie
a6064cf247 NPM Packages Table on Linux (#4315) 2018-05-10 19:11:30 -07:00
Howard Griffith
78e039fbf0 packs: Adding ColdRoot RAT to osx-attacks detection list (#4377) 2018-05-10 15:14:47 -07:00
Steve Brito
8c22b59538 Add manufaturer and service to interface_details table for Windows (#4376) 2018-05-09 18:07:07 -07:00