valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-08 10:23:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,558 Commits 2 Branches 109 Tags 25 MiB
57afea9449
Commit Graph

888 Commits

Author SHA1 Message Date
Mitchell Grenier
57afea9449 Quick segfault fix 2015-03-31 18:20:27 -07:00
Teddy Reed
53782c1c7c [Fix #907] Use glog to log to data-identified files 2015-03-30 12:49:57 -07:00
Teddy Reed
448215aa41 Merge pull request #899 from theopolis/pkg_tables 
[#890] Add package_receipts/package_bom OS X tables
 2015-03-30 10:38:07 -07:00
Teddy Reed
fc623d98d5 Declare extension registries 'external' 2015-03-30 02:03:26 -07:00
Teddy Reed
692c1b1751 Add package_receipts/package_bom OS X tables 2015-03-27 23:12:09 -07:00
Teddy Reed
76e769d95e Merge pull request #908 from theopolis/linux_process_opt 
Remove libprocps(ng) in favor of parsing proc manually
 2015-03-27 12:51:25 -07:00
Teddy Reed
020cf83046 Merge pull request #905 from theopolis/config_update_extension 
Add 'update' action to ConfigPlugin call
 2015-03-27 12:38:41 -07:00
Teddy Reed
38bfed3414 Remove libprocps(ng) in favor of parsing proc manually 2015-03-27 12:37:16 -07:00
Teddy Reed
4fc274201c Add 'update' action to ConfigPlugin call 
ConfigPlugin items can use action='update' along with a single
source, data to add to the config structure. If multiple external
sources update at the same time, multiple 'update' actions are needed.
 2015-03-24 20:59:33 -07:00
Teddy Reed
ec3854ced0 Prevent extensions autoload when extensions are disabled 2015-03-24 17:44:49 -07:00
Teddy Reed
2ba009de2d Merge pull request #889 from theopolis/config_update 
Support specific config source async updating
 2015-03-24 16:55:12 -07:00
Teddy Reed
14a09cc6f2 Change schedule to a map, splay on config update 2015-03-24 16:28:49 -07:00
Teddy Reed
a97d557e5a Add shared lock RAII helper around config access 2015-03-24 16:27:35 -07:00
Teddy Reed
5b227c8e3d Scheduler organization for async config updates 2015-03-24 16:27:35 -07:00
Teddy Reed
2c4d9a8c88 Support specific config source async updating 2015-03-24 16:27:35 -07:00
Teddy Reed
eee5b7d462 Reduce restart times for event runloops 2015-03-24 16:27:07 -07:00
David Reid
580fb6739e Correct typo: hose -> host. 2015-03-24 13:31:25 -07:00
Teddy Reed
aca6839a44 Merge pull request #897 from theopolis/ad_config 
[#892] Adding ad_config table to OS X
 2015-03-24 00:29:51 -07:00
Mitchell Grenier
08ecd2ed80 Merge pull request #883 from jedi22/backslash_fix 
[Fix #877] Removing an extra escape
 2015-03-23 17:39:19 -07:00
Mitchell Grenier
c8e116aa7d Reinstated the extra escape with changes 
I put the original escape back in but redirected the call to a new function
that will escape characters in the form of \xNN when:

`byte < 0x20 || byte >= 0x80`

This leaves slashes alone and should fix this issue.

UPDATE: Tests have also been added. Added an English test to test for NOP.
 2015-03-23 10:49:28 -07:00
Teddy Reed
6d0e64d548 Adding ad_config table to OS X 2015-03-23 10:10:01 -07:00
Teddy Reed
f25e151d9e [Fix #895] Prevent subkey stacking in preferences 2015-03-22 18:45:25 -07:00
mike@arpaia.co
cae5f7800d list the options for host_identifier flag 2015-03-22 00:38:11 -07:00
Teddy Reed
709723efda Merge pull request #880 from theopolis/shell_db 
Remove unused shell functions
 2015-03-19 21:33:37 -07:00
Teddy Reed
c58599057b [Fix #885] Use list directories for homebrew 2015-03-19 16:31:11 -07:00
Teddy Reed
79ddc5ba38 Remove unused shell functions 2015-03-19 16:14:29 -07:00
Mitchell Grenier
3d26cea88e [Fix #877] Removing an extra escape 
I believe the cause of the problem was that an extraneous escape was happening
in the `addNewResults` function in query.cpp.

I believe this can be safely removed because it's purpose is only to make things
JSON safe. However, I don't think this function is ever called with out a JSON
serialization later, making this unnecessary.
 2015-03-19 13:56:47 -07:00
Teddy Reed
91dce32095 Speed up shell and add max value size 2015-03-18 15:07:13 -07:00
Teddy Reed
09790478b3 Nit, prefer boolean columns to not use 'is_' 2015-03-17 15:21:37 -07:00
Teddy Reed
fa6619286c Merge pull request #873 from theopolis/run_fix 
Fix error in run when tables emit blank columns
 2015-03-17 12:31:06 -07:00
Teddy Reed
2dce881936 Fix error in run when tables emit blank columns 2015-03-17 12:25:07 -07:00
Mitchell Grenier
3f75a0345f Fixing hopefully the last filesystem exception 2015-03-17 11:52:56 -07:00
Teddy Reed
3da2e09a5c [Fix #869] Rename safari_plugins is_native 2015-03-17 11:28:37 -07:00
Teddy Reed
afd11fe1f3 Set osquery_extensions for worker child 2015-03-17 10:36:19 -07:00
Teddy Reed
e7b712718c Merge pull request #868 from theopolis/ext_file 
Use a .load file instead of delimited dirs
 2015-03-17 10:33:40 -07:00
Teddy Reed
1a0334ec9a Use a .load file instead of delimited dirs 2015-03-17 10:11:43 -07:00
Mitchell Grenier
e230aebab5 Fixing UBN by adding extra trys to uncaught throws 2015-03-16 15:44:24 -07:00
Teddy Reed
dd354c279d Merge pull request #854 from theopolis/osqueryi_tmp 
[Fix #852] Use a user-specific temporary dir for shell state
 2015-03-16 10:51:38 -07:00
Teddy Reed
8b990c546d [Fix #852] Use a user-specific temporary dir for shell state 2015-03-16 09:29:50 -07:00
Teddy Reed
4440b2f791 Renamed osx_version to os_version, include Linux versions 2015-03-15 16:07:49 -07:00
Teddy Reed
fd3083fb43 [Fix #846] Extension flag aliases are limited to strings 2015-03-14 20:36:27 -07:00
Teddy Reed
6fee50be78 Merge pull request #851 from theopolis/better_ext_testing 
Improve extensions integration testing
 2015-03-14 11:25:24 -07:00
Teddy Reed
1170887d56 Improve extensions integration testing 2015-03-13 18:33:55 -07:00
Mitchell Grenier
637336f8c9 Ability to configure osquery from multiple files 2015-03-13 17:19:02 -07:00
Teddy Reed
aeaee645cd Merge pull request #848 from theopolis/extensions_autoload 
Extension-dependent config/logger plugins
 2015-03-13 12:22:35 -07:00
Teddy Reed
fe0f369af0 Extension-dependent config/logger plugins 2015-03-13 12:01:30 -07:00
Teddy Reed
660c6ec53f Merge pull request #839 from theopolis/addons_vtable 
[#787] Add chrome, firefox, and safari related tables
 2015-03-13 11:01:25 -07:00
Teddy Reed
e281e6a214 [#787] Add chrome, firefox, and safari related tables 2015-03-13 10:48:14 -07:00
Teddy Reed
116d93ef0c Merge pull request #837 from theopolis/rlog 
[Implement #593] Add a RLOG, TLOG helper macro
 2015-03-10 16:06:30 -07:00
Teddy Reed
33cbdd42ba Merge pull request #834 from theopolis/keychain_items 
Add keychain_items to include basic item details
 2015-03-10 16:06:17 -07:00