valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-07 09:58:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4,283 Commits 2 Branches 109 Tags 25 MiB
8d16ae3887
Commit Graph

4283 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mitchell Grenier
8d16ae3887
Add an mdfind table to macOS (#4313) 2018-05-02 10:58:12 -07:00
Nick Anderson
6eb695bf9b
service: add full path for service binary (#4316) 2018-05-01 20:47:22 -07:00
Teddy Reed
f5abb45919
Fast code audit for flags and dispatcher (#4355) 2018-05-01 22:47:01 -04:00
Teddy Reed
eb4460dc8e
Use shadow-all instead of shadow for more GCC parity (#4353) 2018-05-01 22:17:53 -04:00
Florian Klink
d102b1754b tools/get_platform.py: add support for nixos (#4267) 2018-05-01 21:58:03 -04:00
Filipe Manco
161653b2b4 Make options parser ignore invalid options (#4345) 2018-05-01 21:55:33 -04:00
Teddy Reed
e34a558e7b
Separate general hashing methods from table implementation (#4350) 2018-05-01 21:54:23 -04:00
Teddy Reed
0625657dc6
Remove clang pragmas from tables.h (#4352) 2018-05-01 21:50:11 -04:00
Erick Cheng
5e1a92375f packs: Update unwanted-chrome-extensions.conf (#4332) 2018-05-01 16:47:05 -07:00
Teddy Reed
97dae5a56e
sync: Fix sync to handle new fbthrift refactor (#4349) 2018-05-01 19:04:46 -04:00
Nick Anderson
8158f090f8
style: fixing WEL parsing ternary (#4346) 2018-05-01 12:28:30 -07:00
Jonathan Keljo
7a7c43dbe2 Enable query planner to understand CAST statements (#4326) 2018-05-01 12:24:10 -07:00
Teddy Reed
349f401161
Move singleton accessors into implementations (#4347) 2018-05-01 14:56:51 -04:00
Zac Brown
e1534bb3c8 bug: Fix parsing of EventData block for Windows Events. (#4321) 2018-05-01 10:37:58 -07:00
Chris Long
fa487de584 packs: Updating reverse shell query in osx-attacks (#4255) 2018-05-01 10:37:25 -07:00
Filipe Manco
d706f6b52d Fix init when using fbthrift (and folly) (#4343) 2018-05-01 13:27:55 -04:00
Filipe Manco
c12895c5ae Fix registry locking for plugin method (#4341) 2018-05-01 13:27:04 -04:00
Teddy Reed
7919791637
fbthrift: Second set of Apache and FbThrift refactors (#4312) 2018-05-01 13:26:10 -04:00
Eitan Adler
cbb22c887f Remove extraneous letter from CLI flags (#4334) 2018-04-27 14:14:57 -07:00
Mitchell Grenier
c646139e97
Fix a unicode parsing error (#4310) 2018-04-25 15:12:01 -07:00
Yuan Lei
8c9900008d
bug: fix fail to read yum sources (#4284) (#4327) 2018-04-25 12:12:08 -07:00
Nick Anderson
6ba14264e7
bug: fix handle leaks in Windows process functions (#4323) 2018-04-24 14:48:51 -07:00
Nick Anderson
e99351191e
tests: cleaning up windows service tests (#4324) 2018-04-24 14:45:55 -07:00
Mitchell Grenier
592f7d9fa8 bug: convert empty ptree json to empty RJ lists for db upgrades (#4325) 2018-04-24 13:39:22 -07:00
Nick Anderson
c0fd453504
readme: fixed link for windows 2016 builds (#4319) 2018-04-23 16:16:56 -07:00
Mitchell Grenier
44c0b03702
Fix a memory leak in the sip_config table (#4305) 2018-04-20 13:52:24 -07:00
Nick Anderson
305108155a
bug: handle windows service shutdowns gracefully (#4286) 2018-04-18 07:51:04 -07:00
Gabi Purcaru
0d1425266a Added certificate serial number column (#4290) 2018-04-18 07:30:12 -07:00
Filipe Manco
1c397f2d88 Filter by gid on Linux groups table (#4288) 2018-04-18 07:28:47 -07:00
Nick Anderson
2017068f11
database: updating migration logic from ptree to rapidjson (#4294) 2018-04-17 10:55:58 -07:00
Jonathan Keljo
1d07098d29 [darwin][processes] Show kernel_task (#4268) 2018-04-17 08:28:16 -07:00
seph
70f2c969de Update docs to encourage community resources (#4274) 2018-04-16 21:12:36 -07:00
Mitchell Grenier
360f58887c
Fix macOS build on Xcode 9.3 (#4291) 2018-04-16 12:21:33 -07:00
Filipe Manco
293f2d2628
Improve debugging (#4277) 2018-04-16 16:00:54 +01:00
Filipe Manco
921da9e339
Make RegistryInterface thread-safe (#4276) 2018-04-16 16:00:28 +01:00
Chris Hills
67dd49a680 Fix typos in packs/windows-hardening.conf (#4282) 2018-04-13 11:36:49 -07:00
Teddy Reed
4f531b9a7c
config: Parser keys should be objects or arrays (#4281) 2018-04-13 10:10:53 -04:00
Mitchell Grenier
ccc6e54999
Remove BOOST_FOREACH from docker.cpp (#4279) 2018-04-12 12:36:09 -07:00
Ngo The Trung
d27787e84f tables: Use more specific release files on os_version (#4256) 2018-04-10 10:01:42 +01:00
Erick Cheng
e0d4ab1742 Update osx-attacks.conf (#4218) 2018-04-08 22:05:15 -07:00
Victor Vrantchan
e3a044bf22 create a github issue template (#4266) 2018-04-06 16:18:58 -07:00
Victor Vrantchan
e180d350fd update specs at the root directory to include windows (#4248) 2018-04-06 14:32:29 -07:00
Alexander Akulov
8312887744 fix incorrect uptime on windows (#4240) 2018-04-05 08:02:04 -07:00
Ngo The Trung
f1a630735e tables: Add yum_sources table (#4213) 2018-04-05 13:27:59 +01:00
Filipe Manco
5589d109c8
Add support for generating ctags and cscope (#4230) 2018-04-05 11:34:52 +01:00
Mitchell Grenier
21cae039eb bug: Fix acceleration code to use RapidJSON properly (#4236) 2018-04-02 10:21:22 -07:00
Chris Long
e70c043d48 packs: Adding behavioral reverse shell detection to osx-attacks (#4249) 2018-04-02 10:06:38 -07:00
Dimitris Tsapakidis
b99a970f50 Fix typo in documentation readme (#4239) 2018-04-01 12:39:53 -04:00
James Jerger
3abadc77d7 tables: Add video_info table to collect video card information (#4226) 2018-03-30 21:35:11 -07:00
Jonathan Keljo
b1babab8d2 Use safeStrtoll instead of strtol (#4211) 2018-03-30 13:59:27 -07:00