valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-08 02:18:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4,498 Commits 2 Branches 109 Tags 25 MiB
140f2bd72f
Commit Graph

4498 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Chris Hills
67dd49a680 Fix typos in packs/windows-hardening.conf (#4282) 2018-04-13 11:36:49 -07:00
Teddy Reed
4f531b9a7c
config: Parser keys should be objects or arrays (#4281) 2018-04-13 10:10:53 -04:00
Mitchell Grenier
ccc6e54999
Remove BOOST_FOREACH from docker.cpp (#4279) 2018-04-12 12:36:09 -07:00
Ngo The Trung
d27787e84f tables: Use more specific release files on os_version (#4256) 2018-04-10 10:01:42 +01:00
Erick Cheng
e0d4ab1742 Update osx-attacks.conf (#4218) 2018-04-08 22:05:15 -07:00
Victor Vrantchan
e3a044bf22 create a github issue template (#4266) 2018-04-06 16:18:58 -07:00
Victor Vrantchan
e180d350fd update specs at the root directory to include windows (#4248) 2018-04-06 14:32:29 -07:00
Alexander Akulov
8312887744 fix incorrect uptime on windows (#4240) 2018-04-05 08:02:04 -07:00
Ngo The Trung
f1a630735e tables: Add yum_sources table (#4213) 2018-04-05 13:27:59 +01:00
Filipe Manco
5589d109c8
Add support for generating ctags and cscope (#4230) 2018-04-05 11:34:52 +01:00
Mitchell Grenier
21cae039eb bug: Fix acceleration code to use RapidJSON properly (#4236) 2018-04-02 10:21:22 -07:00
Chris Long
e70c043d48 packs: Adding behavioral reverse shell detection to osx-attacks (#4249) 2018-04-02 10:06:38 -07:00
Dimitris Tsapakidis
b99a970f50 Fix typo in documentation readme (#4239) 2018-04-01 12:39:53 -04:00
James Jerger
3abadc77d7 tables: Add video_info table to collect video card information (#4226) 2018-03-30 21:35:11 -07:00
Jonathan Keljo
b1babab8d2 Use safeStrtoll instead of strtol (#4211) 2018-03-30 13:59:27 -07:00
Richard Metzler
3df60e6c7c docs: shadow only works for root / sudo (#4228) 2018-03-30 13:58:22 -07:00
Dimitris Tsapakidis
9b837329b5 docs: Fix typo in README.md (#4237) 2018-03-30 11:28:46 -07:00
Filipe Manco
9797276fc8
Properly filter process_open_sockets when pid=-1 (#4234) 2018-03-30 00:15:44 +01:00
Ngo The Trung
a56588819b tests: Fix compression test failing for Sierra #4139 (#4216) 2018-03-29 20:19:01 +01:00
Filipe Manco
00f3be5535
Fix performance regression on process_open_sockets (#4225) 2018-03-29 19:40:43 +01:00
Filipe Manco
567b0e2abc
Don't bail out when querying one namespace fails (#4229) 2018-03-29 19:39:30 +01:00
Nick Anderson
8b186b01ad bug: Windows crashes table crashes parsing stack traces (#4222) 2018-03-29 19:31:32 +01:00
Nick Anderson
7818b94165
deploy: fixing version bug in windows msi build (#4214) 2018-03-26 13:02:52 -07:00
Seshu Pasam
e45ddd98ce kafka: Support for kafka compression.codec (#4181) 2018-03-21 11:53:13 -07:00
Julien
3c54bf8a11 packs: windows compliance pack based on IAD SAMI (#4156) 2018-03-21 11:45:21 -07:00
James Jerger
ab26abb2d6 tables: Add windows disk_info table (#4177) 2018-03-21 11:42:44 -07:00
Jonathan Keljo
bf707ef4a9 mac/linux: add disk I/O columns to processes table (#4204) 2018-03-21 09:46:26 -07:00
Nick Anderson
9e2515a661
database: convert cached ptree entires to RapidJSON results (#4207) 2018-03-21 09:39:50 -07:00
Nick Anderson
2cf2601f77
perf: refactoring drivers table for performance (#4195) 2018-03-20 17:06:36 -07:00
Teddy Reed
2d67bbf482
thrift: Breakout thrift and fbthrift into implementations (#4130) 2018-03-20 15:20:51 -04:00
ryandeivert
06117da0f1 aws_log_forwarder: incrementing index for batches of records that could not be sent (#4188) 2018-03-09 13:28:14 -08:00
packetzero
525f869325 fix minor leak in darwin disk_encryption generate (#4125) 2018-03-09 12:56:18 -08:00
Mitchell Grenier
873fc4124c
Add status back instead of query data again (#4182) 2018-03-09 12:02:53 -08:00
Mitchell Grenier
f34df53ecb
Remove all table autoreleasepools (#4148) 2018-03-09 12:02:42 -08:00
Seshu Pasam
de6efc096d docker: Deal with HTTP/1.1 response. (#4180) 2018-03-09 12:01:26 -08:00
Jason Meller
dab7d67b86 Add account_policy_data virtual table for macOS (#4165) 2018-03-09 09:02:47 -08:00
Julien
98b7564d91 packs: remove escape - Error parsing the "windows-attacks" pack JSON (#4154) 2018-03-09 08:48:36 -08:00
Jesse Luehrs
ca2e33b3ad look up the external plugin by the correct name (#4169) 2018-03-06 20:13:49 -08:00
Mitchell Grenier
26bd32687a
Add block on short-circuiting discovery queries (#4170) 2018-03-05 13:00:54 -08:00
Teddy Reed
999034367a
freebsd: Update CMake for thrift 11 and boost 1.66 (#4166) 2018-03-05 09:13:05 -05:00
James Jerger
2fdc935840 Update confusing variable name and allow multiple row return in bitlocker_info.cpp (#4146) 2018-03-04 19:23:26 -08:00
Mike Arpaia
e48051697a Removing old website and cleaning up the docs directory (#4084) 2018-03-04 20:09:05 -05:00
Mitchell Grenier
1cc0a694db
Pin CMake version for build stability (#4136) 2018-03-02 15:32:06 -08:00
Cem Gürkök
1e432dcd4c adding fields to docker_containers table (#4167) 
* adding fields to docker_containers table

* adding more fields: path, entrypoint

* addressing comments by obelisk

* pid to int and osquery::join use
 2018-03-02 10:20:59 -08:00
Cem Gürkök
769059fda7 enable docker_container_processes for OS X (#4163) 2018-02-28 19:21:29 -08:00
Filipe Manco
1bbdff8c7a
Replace ptree with JSON on serialization code (#4128) 2018-03-01 00:36:24 +00:00
Nick Anderson
99c8debe4f
deployment: adding default path for Windows packs to example conf (#4159) 2018-02-27 12:22:55 -08:00
Julien
1d96ac1f2c packs: adding platform tag incident-response pack (#4155) 2018-02-26 21:06:44 -08:00
Mitchell Grenier
dad25b89a9
Adding symlink loop detection to globbing (#4129) 2018-02-22 11:57:46 -08:00
Teddy Reed
9f08f0b957
logger: Add check to prevent C++ extensions from using glog (#4147) 2018-02-22 11:53:52 -08:00