seph
335c013603
Changelog 4.5.1 ( #6692 )
...
Changelog for 4.5.1
2020-10-05 13:04:15 -04:00
Teddy Reed
3e10c887ad
Fix incorrect stat return checking within process_events ( #6694 )
2020-10-05 08:43:01 -04:00
Teddy Reed
c9f89cd0cb
tests: Reduce flakiness of test_osqueryi ( #6688 )
2020-10-05 08:42:44 -04:00
Teddy Reed
26940599aa
Flush stdout with --help ( #6693 )
2020-10-04 19:01:20 -04:00
Mike Myers
73d997ca5c
Enable cppcheck target in macOS builds ( #6685 )
2020-10-04 16:33:42 -04:00
Ateeq Sharfuddin
4cf19f29c2
Fix dirPathsAreEqual the documented way ( #6690 )
2020-10-04 11:38:47 -04:00
Teddy Reed
8e504ff814
Add broad exception catching for table execution ( #6689 )
2020-10-04 11:36:36 -04:00
Ateeq Sharfuddin
ecc5403903
Authenticode table with catalog file info ( #6677 )
2020-09-30 20:40:39 -04:00
seph
1205c90cea
Document max interval for scheduled queries ( #6683 )
2020-09-30 11:14:56 -04:00
Teddy Reed
3d07f9dc8d
Fix container overflow in curl_certificate ( #6664 )
...
This fixes undefined behavior where temp_c has the allocated space to hold content but the internal state is confused. The .clear() resets the size to be 0, where the code's intention is to reset the default values.
2020-09-29 22:46:50 -04:00
Mike Myers
aa604be3d2
Update documentation around build steps ( #6681 )
...
Update documentation around build steps
2020-09-29 22:08:25 -04:00
Mike Myers
b68d445464
Incorporate suggested changes on PR 5789 from Directionless
2020-09-28 11:03:13 -04:00
Mike Myers
a9845b65f2
Copy-edit and Markdown lint the remaining deployment docs
2020-09-28 11:03:13 -04:00
Mike Myers
a68c88bc99
Copy-edit and Markdown lint, clarify section headers for HTTP API doc
2020-09-28 11:03:13 -04:00
Mike Myers
a85b02f660
Copy-edit and Markdown lint, remove old comment about CI
2020-09-28 11:03:13 -04:00
Mike Myers
523a256691
Copy-edit and Markdown lint many deployment docs
2020-09-28 11:03:13 -04:00
kumarak
1be071c42d
Fixed handling of invalid array bound error with EvtNext function ( #6660 )
2020-09-28 10:53:29 -04:00
Mike Myers
8a790ed338
Copy-edit and Markdown lint (just nits) remaining developer docs
2020-09-25 16:22:43 -04:00
Mike Myers
bd82064f14
Copy-edit and Markdown lint (just nits) several developer docs
2020-09-25 16:22:43 -04:00
Mike Myers
b144792ce3
Copy-edit and Markdown lint the configuration plugin guidance; minor clarification
2020-09-25 16:22:43 -04:00
Mike Myers
60361d9fb9
Copy-edit and Markdown lint the Windows install steps; quote-escape a path
2020-09-25 16:22:43 -04:00
Mike Myers
8561aed0da
Copy-edit and Markdown lint the CLI flags, and Linux/macOS install steps
2020-09-25 16:22:43 -04:00
Gregory G. Tseng
aabc63649a
Add more AWS regions ( #6666 )
2020-09-25 16:09:58 -04:00
Nabil Schear
49a02f7000
Add timeout and a timeout column to curl_certificate ( #6641 )
2020-09-23 10:55:22 -04:00
Mike Myers
eb98636760
Copy-edit and Markdown lint the osqueryi intro
2020-09-23 10:43:25 -04:00
Mike Myers
184114e300
Copy-edit and Markdown lint the osqueryd intro
2020-09-23 10:43:25 -04:00
Mike Myers
f3e57fe118
Markdown lint the CHANGELOG
2020-09-23 10:43:25 -04:00
Mike Myers
cf5a3aeb20
Copy-edit and Markdown lint the SQL intro
2020-09-23 10:43:25 -04:00
Mike Myers
fbdfa87484
Grammar nits and URL fix in wiki Index
2020-09-23 10:43:25 -04:00
Mike Myers
fa95abe83a
Normalize format style of Changelog
2020-09-23 10:43:25 -04:00
Teddy Reed
689a571785
carver: Improve tests by faking postCarve ( #6659 )
2020-09-22 08:52:58 -04:00
Teddy Reed
18319be84c
carver: Emit an error if the carve function is disabled ( #6658 )
2020-09-21 19:30:04 -04:00
Teddy Reed
d75e6cda72
carver: Update carves specs to allow full scan ( #6657 )
2020-09-21 19:29:44 -04:00
Teddy Reed
775830270e
carver: Update table to use JSON ( #6656 )
2020-09-21 19:29:19 -04:00
Teddy Reed
5b8f20bfce
refactor: Move ephemeral database plugin into core and simplify tests ( #6648 )
2020-09-21 18:25:08 -04:00
Teddy Reed
0ed8b1b581
Fix image column within drivers table on Windows ( #6652 )
2020-09-18 22:12:58 -04:00
Teddy Reed
6a34c9527e
tests: Improve flaky python test handling ( #6654 )
2020-09-18 22:12:21 -04:00
seph
d0465b1af3
Add atom_packages table to windows ( #6649 )
2020-09-18 16:06:01 -04:00
Teddy Reed
f4555ac0d1
Improve performance and accuracy of Windows registry querying ( #6647 )
2020-09-14 11:59:47 -04:00
Teddy Reed
71524093f2
systemd: Limit osqueryd CPU usage to 20% ( #6644 )
2020-09-14 11:59:28 -04:00
Steve Brito
62d9a0c1fa
Fix BIOS Info table searching ( #5246 )
2020-09-13 10:53:07 -04:00
Teddy Reed
87f6832cdc
tests: Restore test_osqueryi ( #6631 )
2020-09-13 10:52:24 -04:00
puffyCid
bd545631ed
Support for Office MRU (most recently used) entries ( #6587 )
2020-09-13 10:51:51 -04:00
Teddy Reed
5c71654dcf
Add 4.5.0 CHANGELOG ( #6646 )
2020-09-12 19:17:50 -04:00
kumarak
69bcf70b8c
Add sigurl column to pass yara signatures with the queries ( #6607 )
2020-09-11 15:14:01 -04:00
Gavin
5f48f93517
Update process auditing docs schema link ( #6645 )
2020-09-11 15:12:48 -04:00
puffyCid
10b0635bc2
Support for Background Activity Moderator ( #6585 )
2020-09-10 22:20:34 -04:00
Teddy Reed
d7d6c56473
database: Remove read only concept ( #6637 )
2020-09-10 19:58:38 -04:00
kumarak
51d3833508
Parsing of user data in Windows event log ( #6643 )
2020-09-10 19:57:53 -04:00
Teddy Reed
c32953e139
events: Remove selectAllFrom from linux process events callback ( #6638 )
2020-09-08 16:16:22 -04:00