valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-07 09:58:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4,426 Commits 2 Branches 109 Tags 25 MiB
7a66202e5e
Commit Graph

4426 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Max Kareta
a4f1bedc63
Fixing memory leak in mdfind table (#4406) 2018-05-22 13:08:13 +01:00
Max Kareta
b92b8a078a
Fixed over release of object on osx (#4404) 2018-05-22 13:07:43 +01:00
Max Kareta
bf82fca620
[osx] added autorelease pools (#4405) 2018-05-21 14:41:02 +01:00
Filipe Manco
892fa79e75
Fix debuginfo build-id subdirectory (#4401) 2018-05-18 18:41:12 +01:00
Alexander
8de02701f2 Apply const qualifier for Config::packs(...) method (#4387) 2018-05-18 18:37:33 +01:00
Teddy Reed
201dd6d940 packs: Fix blacklist option bool assumption (#4400) 2018-05-18 11:58:59 +01:00
Teddy Reed
b4c7abb2b8
http_client: Always close socket on exception (#4399) 2018-05-17 23:26:25 -04:00
Seshu Pasam
b49feec0d3 aws: Deal with missing uuid file on C5/M5 instances. (#4397) 2018-05-17 22:33:34 -04:00
Allan Liu
1c38b7626d tables: add link_speed column to interface_details for linux (#4320) 2018-05-17 14:35:20 -07:00
Allan Liu
a110c291fa tables: Virtual table implemention for memory devices from SMBIOS (#4138) 2018-05-17 17:33:35 -04:00
Steve Brito
c52276879a tables: adding bios_info table for Windows. (#4118) 2018-05-17 13:49:33 -07:00
Chris Long
8c815f27b5 packs: Adding MacSeach adware to osx-attacks (#4394) 2018-05-16 20:59:17 -07:00
Scott Lundgren
89fe2dc693 update building documentation to reference Windows (#4389) 2018-05-16 23:36:11 -04:00
Ben Isaacs
8fca2a21c1 add documentation for alf global_state (#4247) 2018-05-16 22:43:37 -04:00
Mohamed Bassem
fa96157301 Fixing OSQUERY_DEPS in building documentation (#4390) 2018-05-15 11:48:36 +01:00
Ngo The Trung
b748386ddb mac: add 'state' to process_open_sockets (#4253) 2018-05-15 11:28:42 +01:00
Nick Anderson
a338c86170
tables: adding user_groups table for Windows (#4217) 2018-05-14 16:48:16 -07:00
Giorgi Guliashvili
58969a1df7 Removed startup_items from linux platform. (#4373) 2018-05-14 23:50:28 +01:00
Teddy Reed
6e9f55d15d
llvm 6.0 and libFuzzer implementation (#4370) 2018-05-12 21:56:00 -04:00
cankansin
122b3867bd wrong variable name, content should be config (#4385) 2018-05-12 10:23:41 -07:00
Jonathan Keljo
1ea714a325 Plumb used columns into QueryContext; use that to make processes table more efficient on macOS (#4269) 2018-05-12 09:07:57 -07:00
James Jerger
a5df5acc01 Refactor tables to bail out early on error. Add encryption method to bitlocker_info. (#4337) 2018-05-11 22:57:16 -07:00
Nick Anderson
e50a38490b
bug: wait for service thread to finish before exiting with SCM (#4386) 2018-05-11 14:30:16 -07:00
Filipe Manco
74cee943f3
Handle placeholder hardware UUIDs (#4374) 2018-05-11 21:35:33 +01:00
Alexander
bfb6c13674 Add const qualifier to some Config methods (#4383) 2018-05-11 09:36:48 +01:00
Andrew Guthrie
a6064cf247 NPM Packages Table on Linux (#4315) 2018-05-10 19:11:30 -07:00
Howard Griffith
78e039fbf0 packs: Adding ColdRoot RAT to osx-attacks detection list (#4377) 2018-05-10 15:14:47 -07:00
Steve Brito
8c22b59538 Add manufaturer and service to interface_details table for Windows (#4376) 2018-05-09 18:07:07 -07:00
Alexander
1a48150be0 Pass name of query to lambda in Config::scheduledQueries by value (#4367) 2018-05-09 14:56:19 +01:00
Nick Anderson
4125297158
tables: adds a Powershell events table to Windows (#4351) 2018-05-07 10:26:43 -07:00
Rich5
aea381e147 Correct process uid for user name mapping and added is_elevated_token column (#4369) 2018-05-06 20:14:59 -07:00
Jonathan Keljo
45b0286c4f [darwin] Fix a variety of small bugs in system_controls (#4328) 2018-05-06 20:59:03 -04:00
Mitchell Grenier
192ccaeaed
New ATC Tables (#4271) 2018-05-04 13:54:14 -07:00
Jonathan Keljo
4ed6a22a4b Fix an old regression in processes table on macOS (#4254) 2018-05-04 18:18:59 +01:00
Nick Anderson
5073348d2f
release: adding Windows links to release script (#4366) 2018-05-03 16:50:56 -07:00
Mitchell Grenier
30a10db1a3
macOS usb_devices slight code adjustment (#4365) 2018-05-03 14:33:46 -07:00
barn-stripe
2e72f9f20a Fix USB class/subclass IDs on darwin (#4363) 2018-05-03 21:56:04 +01:00
Nick Anderson
81751e5526
bug: do not block hashing file read on posix (#4356) 2018-05-03 10:38:06 -07:00
Nick Anderson
d10dbb3caa
tables: updating confusing info messages for interface details table (#4215) 2018-05-03 10:34:33 -07:00
Soukaina NAIT HMID
2ac7dc6b64 recover interface flags (#4303) 2018-05-03 18:14:36 +01:00
Filipe Manco
446ae4c366
Add namespaces to processes table on linux (#4263) 2018-05-03 18:12:53 +01:00
Filipe Manco
96a5bdde7f
Remove --logger_min_stderr from service files (#4361) 2018-05-03 16:56:55 +01:00
Mitchell Grenier
5bd021a84f
Cups Jobs and Cups Destinations (#4278) 2018-05-02 15:03:17 -07:00
Mitchell Grenier
8d16ae3887
Add an mdfind table to macOS (#4313) 2018-05-02 10:58:12 -07:00
Nick Anderson
6eb695bf9b
service: add full path for service binary (#4316) 2018-05-01 20:47:22 -07:00
Teddy Reed
f5abb45919
Fast code audit for flags and dispatcher (#4355) 2018-05-01 22:47:01 -04:00
Teddy Reed
eb4460dc8e
Use shadow-all instead of shadow for more GCC parity (#4353) 2018-05-01 22:17:53 -04:00
Florian Klink
d102b1754b tools/get_platform.py: add support for nixos (#4267) 2018-05-01 21:58:03 -04:00
Filipe Manco
161653b2b4 Make options parser ignore invalid options (#4345) 2018-05-01 21:55:33 -04:00
Teddy Reed
e34a558e7b
Separate general hashing methods from table implementation (#4350) 2018-05-01 21:54:23 -04:00