valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-07 09:58:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,213 Commits 2 Branches 109 Tags 25 MiB
3c114c3439
Commit Graph

2213 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Teddy Reed
3c114c3439 [Fix #1453] Use second precision for process start times 2015-08-27 15:47:06 -07:00
Teddy Reed
d47cac7434 Merge pull request #1461 from blackfist/master 
Attempts to add a cli flag --enroll_secret_env
 2015-08-26 14:57:00 -07:00
Teddy Reed
0ce8d5dc49 Merge pull request #1467 from sharvilshah/readme_query_update 
[Doc Update] Fix example query in README
 2015-08-26 14:18:15 -07:00
Sharvil Shah
33f626590c Fix example query to get process details for processes listening on all interfaces. 
As it previously stood, the query was listening all process pids and
for each searching the matching pid that was listening.
It now joins process details with against each pid with a listening socket.

Hat tip to @theopolis (https://github.com/facebook/osquery/issues/1465#issuecomment-134835685)
 2015-08-26 13:53:24 -07:00
Kevin Thompson
e8772f2603 Adds an enroll_secret_env flag that allows the user to specify that 
the enroll secret for TLS enrollment is stored in an environment
variable rather than a file.
 2015-08-25 21:11:19 -05:00
Teddy Reed
68cb40bae1 Merge pull request #1464 from mathieuk/update_thirdparty_commit 
Update to latest commit on the third-party submodule
 2015-08-25 09:02:24 -07:00
Teddy Reed
9a675878d5 Merge pull request #1458 from DavidGosselin/fedoraSupport 
Support for Building on Fedora 21
 2015-08-25 09:02:08 -07:00
Dave Gosselin
6899127e1e Add support for building on Fedora 21 2015-08-25 11:10:56 -04:00
Mathieu Kooiman
81cd751596 Update to latest commit on the third-party submodule 2015-08-25 09:05:50 +02:00
Teddy Reed
225a14660a Merge pull request #1449 from mathieuk/build_on_debian_wheezy_and_jessie 
Build on Debian Wheezy and Debian Jessie
 2015-08-24 10:14:39 -07:00
Mathieu Kooiman
b151ecedc2 Refs https://github.com/facebook/osquery/issues/320 
Add provisioning scripts to build osquery on Debian Wheezy and Debian Jessie.
 2015-08-20 20:57:22 +02:00
Teddy Reed
2cf795b5db Merge pull request #1459 from facebook/feature_allow_static 
Allow static linking when BUILD_LINK_SHARED is used
 2015-08-20 10:39:19 -07:00
Teddy Reed
3a5831a4e4 Allow static linking when BUILD_LINK_SHARED is used 2015-08-20 10:20:31 -07:00
Teddy Reed
53cc8dad8a Merge pull request #1456 from arubdesu/miniscule-doc-tweak 
osqueryctl subcommand reversed in doc
 2015-08-19 14:26:38 -07:00
Allister Banks
153fbdff0d osqueryctl subcommand reversed in doc 
Yes it immediately told me about it, this is just a docs tweak to
reflect the proper order. 😅
 2015-08-19 13:09:25 -04:00
Teddy Reed
6930b15664 Merge pull request #1452 from theopolis/remove_matrix_rotate 
Remove VirtualTable matrix rotation
 2015-08-18 21:35:03 -07:00
Teddy Reed
0cfe68b5b9 Merge pull request #1454 from theopolis/optional_libressl 
Optionally use LibreSSl
 2015-08-18 10:56:28 -07:00
Teddy Reed
af2d8b20bd Optionally use LibreSSl 2015-08-18 01:45:49 -07:00
Teddy Reed
bdadc9753b Additional OS X table performance improvements 2015-08-18 01:35:10 -07:00
Teddy Reed
73da2f1448 Merge pull request #1443 from sharvilshah/libressl 
[#1329] Statically link against brew bottled libressl on OS X
 2015-08-18 01:09:45 -07:00
Teddy Reed
ff926730a9 Remove VirtualTable matrix rotation 2015-08-17 16:58:54 -07:00
Teddy Reed
fb93b73253 Merge pull request #1450 from eastebry/fix-package-dependencies 
Fix lucid package building
 2015-08-17 16:04:00 -07:00
Teddy Reed
cd2056750f Merge pull request #1451 from theopolis/rocksdb_speed 
RocksDB usage speedups
 2015-08-16 17:31:56 -07:00
Teddy Reed
5bf30a779d RocksDB usage speedups 2015-08-15 20:43:53 -07:00
Bryan Eastes
1ac7c5d21a Installing specific FPM version 2015-08-15 15:11:29 -07:00
Teddy Reed
43cf5f1a0a Merge pull request #1448 from theopolis/strol-speedup 
Speedup type conversions, yara, and 10.10 symbols at runtime
 2015-08-14 11:01:46 -07:00
Teddy Reed
68d7a6e0be Speedup type conversions, yara, and 10.10 symbols at runtime 2015-08-13 18:04:03 -07:00
Sharvil Shah
ccc086f050 Statically link against brew bottled libressl on OS X 
* It wasn't straightforward to get OpenSSL building
 without avx/vxoprs optimizations on 10.10
* libressl is essentially a modern/lean-ish drop-in replacement for OpenSSL
and can build without avx optimizations to support older Macs

This change:

* Installs libressl (builds a bottle) using homebrew
* And statically links `libcrypto.a` and `libssl.a` unless
`BUILD_LINK_SHARED` is requested.

Fixes #1329
 2015-08-13 15:31:26 -07:00
Javier Marcos
1d995fb007 Merge pull request #1445 from javuto/adding_10.9_build 
Adding OSX 10.9 build badge
 2015-08-13 17:45:33 +02:00
Javier Marcos
6427179159 Adding OSX 10.9 build badge 2015-08-13 17:32:00 +02:00
Javier Marcos
eaf317ef6c Merge pull request #1444 from javuto/darwin_10.9_wrong_variable 
Fix for the version variable
 2015-08-13 07:48:20 +02:00
Javier Marcos
ee98bbde67 Fix for the version variable 2015-08-13 07:02:24 +02:00
Teddy Reed
251aded11c Merge pull request #1442 from javuto/darwin_package_10.9 
Updating the script to create packages for 10.9 building
 2015-08-12 18:16:36 -07:00
Teddy Reed
fd1b4b06e8 Merge pull request #1436 from theopolis/pack_place 
[#1402] Add notes around pack paths in example.conf
 2015-08-12 18:15:50 -07:00
Teddy Reed
b9ded9e7af [#1402] Add notes around pack paths in example.conf 2015-08-12 17:15:42 -07:00
Javier Marcos
861e0e4273 Using the code in lib.sh 2015-08-13 00:53:44 +02:00
Javier Marcos
54cb08c193 Updating the script to create packages for 10.9 building 2015-08-12 20:34:50 +02:00
Teddy Reed
634dfe7da1 Merge pull request #1438 from sharvilshah/fix_homebrew_version 
[Fix #1434] version reporting for homewbrew_packages
 2015-08-12 11:30:21 -07:00
Teddy Reed
3e812f05de Merge pull request #1441 from facebook/theopolis-patch-test-10.9 
Update build/test for 10.9 (do not test extension)
 2015-08-12 11:06:07 -07:00
Teddy Reed
ea0ca195f6 Update build/test for 10.9 (do not test extension) 
OS X 10.9 should not build/test a kernel extension yet. The MAC policy framework is slightly different and the APIs/version dependencies need to be tested.
 2015-08-12 10:40:53 -07:00
Javier Marcos
d3f7898e16 Merge pull request #1440 from javuto/darwin_building_dir 
Different build directory for darwin != 10.10
 2015-08-12 18:28:57 +02:00
Javier Marcos
1b233a9936 Different build directory for darwin != 10.10 2015-08-12 18:02:25 +02:00
Bryan Eastes
e2246f7e22 Removed package dependencies 2015-08-11 22:17:10 -07:00
Mike Arpaia
cc5a53ac38 Merge pull request #1437 from sharvilshah/fix_os_version 
[Fix #1433] Correct os_version reporting on 10.11
 2015-08-11 16:52:12 -07:00
Sharvil Shah
b190f5f99a Fix #1433, os_version reporting for 10.11 2015-08-11 14:03:27 -07:00
Sharvil Shah
369040e69b Fix version reporting for homewbrew_packages. Fixes #1434 2015-08-11 01:50:40 -07:00
Teddy Reed
c72bd1ad0a Merge pull request #1426 from sharvilshah/build_osx_10_11 
Fix build on OS X 10.11
 2015-08-10 09:00:08 -07:00
Mike Arpaia
f4c87b43a5 Merge pull request #1429 from sharvilshah/fix_ubuntu_build 
[Fix #1428] Remove `-mtune` compile flag
 2015-08-08 19:07:16 -07:00
Michael O'Farrell
eefccf27b1 Switch boost lexical casts to strtol. This should be faster than a boost lexical cast. 2015-08-07 16:33:32 -07:00
Sharvil Shah
e4f52589f5 Remove -mtune compile flag 
Having `-mtune=i386` is causing compilation failure for gflags on ubuntu.
This change removes the `mtune` compile flag.
`-march` flag is already set to `x86-64` and according to gcc doc,
Specifying `-march=cpu-type` implies `-mtune=cpu-type.`

Fixes #1428
 2015-08-06 17:14:33 -07:00