valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-08 10:23:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3,191 Commits 2 Branches 109 Tags 25 MiB
1a43d4e4c3
Commit Graph

3191 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Teddy Reed
1a43d4e4c3 Reorganize analysis tools/artifacts into analysis (#2497) 2016-09-21 15:15:25 -07:00
Teddy Reed
36cf429b0e Prefer the osquery dependencies root for Python tests (#2496) 2016-09-21 13:36:07 -07:00
Teddy Reed
a6589c49e3 [Fix #2482] Use atomic member in Dispatcher tests (#2494) 2016-09-21 10:52:52 -07:00
Teddy Reed
94df7cb691 Build OpenSSL with no-asm to remove AVX2 dependency (#2493) 
To support machines without AVX2 features we need to avoid compiling
and linking the dependent instructions found the ASM implementations
of some OpenSSL crypto algorithms.

Additionally, we are removing the SSL3 methods from our OpenSSL build.
The osquery TLS plugins explicitly define a cipher list that excludes
SSL3, but as an extra measure (for plugins not using our transports)
we remove it from ASIO and Thrift too.
 2016-09-21 10:37:07 -07:00
Teddy Reed
f87e9df38f [#2491] Add Homebrew contributors license (#2492) 2016-09-21 09:16:06 -07:00
Nick Anderson
2abdd120a7 Small fixes to PSScriptAnalyzer install verbosity (#2489) 2016-09-20 17:45:43 -07:00
Alex
575685d3c7 Add support for pre-uninstall scripts at package creation (#2480) 2016-09-20 16:39:40 -07:00
Ryan Holeman
9d9e32badc Changed the naming convention of the tls server file to match osx (#2485) 2016-09-20 16:35:36 -07:00
Teddy Reed
54b20112de Limit CTest runs to 600 seconds (#2479) 2016-09-20 14:19:21 -07:00
yying
a7af70d021 Adding remote config/logging capabilities to Windows build (#2469) 2016-09-20 14:18:58 -07:00
Nick Anderson
c7687df3ee Adding version checking to provisioning script (#2478) 2016-09-20 11:29:29 -07:00
yying
c97118f2f8 Updates to Windows provisioning document (#2471) 2016-09-19 16:46:43 -07:00
Teddy Reed
ef10e93d60 Improve scheduled/differential query performance and logging (#2476) 2016-09-19 16:45:13 -07:00
Nick Anderson
99795033b2 Fixing powershell linting warnings (#2470) 2016-09-19 13:46:49 -07:00
Zachary Wasserman
9701c55d96 Add active column to osquery_packs table (#2475) 2016-09-19 13:00:11 -07:00
Nick Anderson
5877c3d464 Removing service start functionality (#2464) 2016-09-16 15:17:03 -07:00
Nick Anderson
386f123e03 Changing windows service name for parity with other platforms (#2465) 2016-09-16 15:16:48 -07:00
Zachary Wasserman
7adf271570 Remove errant comma in example config JSON (#2474) 2016-09-16 13:20:42 -07:00
Teddy Reed
c9880cad17 Refactor legacy runtime (#2473) 2016-09-16 11:29:43 -07:00
Bryon Gloden, CISSP®
0ef69c6b1d [windows] fix deallocation mismatches (#2468) 2016-09-15 15:13:05 -07:00
Teddy Reed
366b5f08ca Limit Linux package dependencies (#2463) 2016-09-14 10:31:21 -07:00
Teddy Reed
df1e3b9481 Add make fuzz (#2458) 2016-09-13 20:37:31 -07:00
Teddy Reed
ad3349ff92 Update RPM packages with bottle hashes (#2459) 2016-09-13 10:10:05 -07:00
Teddy Reed
c7ee4f9ca4 Add librpm build and RPM tables (#2456) 2016-09-12 22:43:36 -07:00
Teddy Reed
53364b3cb5 Check for plist existance before attempting parsing (#2450) 2016-09-12 22:41:23 -07:00
Teddy Reed
a6ea7d6f6e Fix potential cast issue in memory_info (#2457) 2016-09-12 22:40:51 -07:00
Mitchell Grenier
072a93ccac Accelerated checkins (#2454) 2016-09-12 16:53:42 -07:00
yying
a27d6567e4 Core and Additional Tests (#2441) 2016-09-12 09:46:52 -07:00
Teddy Reed
817cb7ebd4 Fix minor sandboxes performance issues and plist parsing exceptions (#2455) 2016-09-09 19:45:37 -07:00
Nick Anderson
5060392b06 Multiple bug fixes in crashes (#2447) 2016-09-09 15:10:11 -07:00
Teddy Reed
71fff517e5 Add warning for event-based table without events (#2449) 2016-09-08 15:44:32 -07:00
Mitchell Grenier
61c9da1c42 Buffer the distributed queries to RocksDB for greater reliability (#2452) 2016-09-08 15:40:14 -07:00
Serey Ty
d778ed357f add query to detect Backdoor.OSX.Mokes.a (#2448) 2016-09-07 21:03:01 -07:00
Nick Anderson
467f9b3409 Adding Bool and String Array WMI Wrapper functions (#2430) 2016-09-07 18:04:33 -07:00
Teddy Reed
1a5f36c715 deps: CMake 3.6.1 (#2440) 2016-09-07 16:30:15 -07:00
Teddy Reed
ea9ef3211c Change schedule and distributed log execution status text (#2445) 2016-09-07 15:35:28 -07:00
Teddy Reed
1bc52f8a50 [Fix #2443] Restore shellstaticFunc argument names (#2444) 2016-09-07 14:28:56 -07:00
Ryan Holeman
6f919429ff added env flag to create *nix packages with a tls server certs file (#2442) 2016-09-07 13:16:59 -07:00
Nick Anderson
7b8bd9657d Adding clang-format to provisioning (#2437) 2016-09-06 16:42:20 -07:00
Nick Anderson
01011f4d0f Fixed bug in MULTI_SZ processing (#2439) 2016-09-06 16:41:57 -07:00
Philip J Beyer
4f6c802c7b Corrects Linux package script reference (#2415) 
Corrects reference to example config in Linux package script.
 2016-09-06 16:41:04 -07:00
Teddy Reed
81d8a4aa68 Emit warnings for improper 'osquery' table usage (#2432) 2016-09-02 19:13:37 -07:00
yying
84e6a3401a Reducing compiler warnings and fails on warn in VS (#2433) 2016-09-02 15:04:03 -07:00
Nick Anderson
7c90823a0c Upgrade LLVM to 3.8.1 on Linux (#2436) (#2435) 2016-09-02 14:53:04 -07:00
Teddy Reed
111dadf8a0 Upgrade LLVM to 3.8.1 on Linux (#2436) 2016-09-02 07:59:10 -07:00
Teddy Reed
b61bbdbae3 Remove OpenSSL and cpp-netlib old version exceptions (#2413) 2016-08-31 17:32:50 -07:00
yying
d347c847e1 Support for extensions (#2363) 2016-08-31 16:45:06 -07:00
Teddy Reed
65dd56e113 Introduce table 'attributes' (#2431) 2016-08-31 15:32:20 -07:00
Teddy Reed
d6e20279d8 Use LOG(INFO) and set INFO as default logging mode (#2420) 
This is fairly important, it changes the default mode for what status
events are logged to INFO. It had been set to WARNING and INFO was relatively
unused.

This also removes expected support for RocksDB 'in-memory' databases.
If a shell-user requests a database via CLI flags it will now work.
 2016-08-31 15:09:01 -07:00
Teddy Reed
080bc5ed88 Improve verbose logging for several linux event publishers (#2421) 2016-08-29 14:26:25 -07:00