valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-08 10:23:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
1,655 Commits 2 Branches 109 Tags 25 MiB
6b9f412caa
Commit Graph

1655 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Teddy Reed
6b9f412caa Towards OS X memory maps 2015-04-18 14:20:40 -07:00
Teddy Reed
1236f22501 Merge pull request #999 from theopolis/launchd_overrides_2 
Add launchd_overrides table
 2015-04-16 13:35:22 -07:00
Teddy Reed
cf479abdc8 [Fix #1000] Bump third-party SQLite 3.8.9 2015-04-16 12:53:12 -07:00
Teddy Reed
c9e07ec2ba Add launchd_overrides table 2015-04-15 23:19:23 -07:00
Mike Arpaia
a8506d15e8 Merge pull request #997 from facebook/platform_osquery_info 
[#989] Adding distro and version to osquery_info
 2015-04-15 21:28:35 -07:00
Javier Marcos
4763d2a5ff Removing commented ifdef 2015-04-15 20:46:06 -07:00
Javier Marcos
7a2716b4b6 Adding distro and version to osquery_info 2015-04-15 16:34:12 -07:00
Teddy Reed
1e584c9b93 Merge pull request #992 from theopolis/debug_target 
[Fix #991] Use separate targets for opt/debug builds
 2015-04-15 12:19:21 -07:00
Teddy Reed
8fe0a214b2 Merge pull request #994 from theopolis/ubuntu_version 
Fix Ubuntu os_version regex
 2015-04-15 12:18:46 -07:00
Mike Arpaia
c37be342ec updating wiki link to read the docs 2015-04-15 01:02:58 -07:00
Teddy Reed
f7f1819a67 Fix Ubuntu-version regex 2015-04-14 22:43:44 -06:00
Teddy Reed
e6a436fc51 Merge pull request #988 from theopolis/config_parsers 
Add a ConfigParserPlugin to extend config keys
 2015-04-14 21:27:56 -07:00
Teddy Reed
338a14e8db [Fix #991] Use separate targets for opt/debug builds 2015-04-14 22:25:00 -06:00
Teddy Reed
2d3de51510 Restrict permissions on RocksDB paths 2015-04-14 21:07:21 -07:00
Teddy Reed
c3958259b8 Add a ConfigParserPlugin to extend config keys 2015-04-14 20:30:06 -07:00
Teddy Reed
b7d060bc9d Merge pull request #985 from theopolis/rhel_clang3.4 
Cross compile with LLVM 3.4 using gcc 4.9 on RHEL6.5
 2015-04-14 19:54:59 -07:00
Mike Arpaia
af0caac22c Merge pull request #984 from marpaia/requests 
Request template classes
 2015-04-13 11:33:25 -07:00
mike@arpaia.co
233f672655 Request template classes 
As discussed in the comments of #961. Included is an HTTP transport
(which works for HTTPS also) and a JSON serializer.
 2015-04-13 10:32:56 -07:00
Teddy Reed
595e94547d Build LLVM 3.4 using gcc 4.9 on RHEL6.5 2015-04-13 09:19:09 -07:00
Teddy Reed
739d91c361 Performance linting 2015-04-11 19:50:35 -07:00
Teddy Reed
e1f0106710 Various fixes, checks 2015-04-11 15:57:12 -07:00
Teddy Reed
a8ced9a647 Merge pull request #977 from theopolis/process_parsing 
[Fix #968] Refactor launchd
 2015-04-11 14:18:58 -07:00
Mike Arpaia
0745017233 missing quote in docs 2015-04-10 23:31:10 -07:00
Mike Arpaia
5cebb95134 Merge pull request #979 from theopolis/fast_shell_query 
Skip event publishers when a single query is used
 2015-04-10 23:03:51 -07:00
Mike Arpaia
43cd956c99 Merge pull request #978 from theopolis/no_thrift_php 
Remove php from thrift provision
 2015-04-10 23:02:54 -07:00
Teddy Reed
54af369702 [Fix #968] Refactor launchd 2015-04-10 18:04:26 -07:00
Teddy Reed
aaecffa096 Skip event publishers when a single query is used 2015-04-10 17:37:49 -07:00
Teddy Reed
4a299c1fac Remove php from thrift provision 
The only thrift bindings we need for osquery are cpp/python.
Python is used for the integration tests.
 2015-04-10 17:15:31 -07:00
Mike Arpaia
4a9600d8a1 Merge pull request #967 from jedi22/better_extended 
Better extended attributes
 2015-04-10 16:09:18 -07:00
Mike Arpaia
5ebd757318 Merge pull request #976 from theopolis/tsk 
Documentation updates
 2015-04-10 16:09:05 -07:00
Teddy Reed
e69f72cd56 Documentation updates 2015-04-10 14:31:34 -07:00
Mitchell Grenier
41283223af Better extended attributes 
For the second time in a couple of weeks, I've rewritten the xattr table into
a new extended_attributes table.

If we find an attribute that we don't have a parser for, we will check if it
contains non printable characters. If it does, we'll base64 it. If it doesn't,
we will just output the unencoded string.
 2015-04-10 13:17:22 -07:00
mike@arpaia.co
159899a303 Update patent grant 2015-04-10 11:49:33 -07:00
mike@arpaia.co
dfbc4a2239 making the readme's queries more consistent 2015-04-09 23:17:27 -07:00
Teddy Reed
31ab39ff6a Update wiki pages to use RTD 
Deprecate README links to github wiki pages, use RTD links instead.
Update osquery.io http links to https.
 2015-04-09 22:37:00 -07:00
Teddy Reed
36479bbaf6 Merge pull request #970 from theopolis/osx_managed_configuration 
[Implement #879] Add managed_policies to OS X
 2015-04-09 12:14:50 -07:00
Teddy Reed
dc7cf9cf59 [Implement #879] Add managed_policies to OS X 2015-04-08 21:38:56 -07:00
Teddy Reed
ea96a9d046 Merge pull request #963 from theopolis/os_version 
[Fix #962] Add OS name and friendly version
 2015-04-08 21:32:49 -07:00
Teddy Reed
d30455893f Merge pull request #941 from theopolis/rhel_fun 
[Implement #926] RHEL6 provisioning
 2015-04-08 14:37:48 -07:00
Teddy Reed
1305a2764a [Fix #964] Restrict apt-sources to arch=amd64 2015-04-08 14:13:01 -07:00
Teddy Reed
8b2dd5e328 [Fix #962] Add OS name and friendly version 2015-04-08 07:33:17 -07:00
Javier Marcos
f97ca38743 Merge pull request #960 from facebook/safari_into_internet_plugins 
Renaming safari_plugins table to browser_plugins
 2015-04-07 14:49:46 -07:00
Javier Marcos
dee0bd683e Renaming safari_plugins table to browser_plugins 2015-04-07 14:26:00 -07:00
Teddy Reed
75f4d6548d [Fix #953] Check sqlite predicate expression passing 2015-04-07 01:20:05 -07:00
Teddy Reed
78ec6fb305 Merge pull request #956 from sharvilshah/bug/etc_hosts_comment_parsing 
[Fix #955] Fix etc_hosts hostname parsing so that inline comments are now ignored
 2015-04-07 00:27:58 -07:00
Teddy Reed
5d061e7ff8 Merge pull request #947 from theopolis/update_readme_table 
Update readme table
 2015-04-07 00:07:05 -07:00
Teddy Reed
41ce00e573 RHEL6 provisioning 2015-04-06 23:43:01 -07:00
Sharvil Shah
e7a3d24ece Fix etc_hosts hostname parsing so that inline comments are now ignored; update tests 2015-04-06 23:32:56 -07:00
Teddy Reed
f3c875fe5d Merge pull request #951 from wxsBSD/doc_fixes 
Remove MATCHES from docs.
 2015-04-06 21:25:47 -07:00
Wesley Shields
c2c6dbd216 Remove MATCHES from docs. 
This is not a valid ConstraintOperator.
 2015-04-06 20:43:56 -04:00