Teddy Reed
26e83f8ee9
Merging for linux build and libosquery compiling options
2014-09-08 17:17:30 -07:00
Teddy Reed
7e470747b4
Moving sublibs to single libosquery
2014-09-08 01:58:29 -07:00
mike@arpaia.co
7d387ec605
status default constructor
2014-09-06 03:41:10 -07:00
Teddy Reed
4ffd184eaf
Changes for Linux (Ubuntu 14.04) build
2014-09-05 10:58:58 -07:00
mike@arpaia.co
66a2a6fdec
Fix performance issue with the disk serializer
...
This is the issue noted in #76 . Keeping all historical results of
queries in the HistoricalQueryResults struct makes serializing and
deserializing those structs very, very slow as time goes on. By only
storing the last execution of the query, we keep the performance
constant, but we kill the feature where osquery can rebuild timelines
without accessing logs. After talking it over, we decided that this
isn't actually that big of a deal because, if you really wanted to
rebuild the old data, you should be able to process the logs, similarly
to bin log replication in MySQL.
2014-09-02 13:13:12 -07:00
mike@arpaia.co
63070a0d49
migrating project to use CMake's CTest to run unit tests
2014-09-02 11:14:21 -07:00
mike@arpaia.co
303e73e9ba
Log files to disk close #78
2014-09-01 17:13:04 -07:00
mike@arpaia.co
47bfe57272
clang-format
2014-08-30 04:06:31 -07:00
mike@arpaia.co
b7f9ecc6e1
add an extra char for the \0
2014-08-30 03:53:32 -07:00
mike@arpaia.co
d2b96401a4
was closing the db in the middle of the loop instead of after it, causing subsequent queries to fail
2014-08-30 03:49:49 -07:00
mike@arpaia.co
1ff68cabf3
making sure the db is closed in sqlite_util_tests
2014-08-30 03:07:14 -07:00
mike@arpaia.co
0e806eff83
Proper ARC in Objective-C++ code
2014-08-30 00:22:26 -07:00
mike@arpaia.co
15519b348e
Adding LaunchDaemon and flagfile to the repo/package
2014-08-26 11:26:52 -07:00
mike@arpaia.co
fbc37d9399
clang-format on objective-c++ files
2014-08-19 20:18:49 -07:00
Teddy Reed
444cea0649
[vtable_cacerts] New CA certificates table.
2014-08-19 13:47:09 -07:00
mike@arpaia.co
3760e4cce5
Apple virtual table for LaunchAgents and LaunchDaemons
2014-08-15 13:46:09 -07:00
mike@arpaia.co
9973335e49
OS X virtual tables for currently installed applications
2014-08-15 12:58:19 -07:00
mike@arpaia.co
e723306c13
Ran clang-format across the codebase
2014-08-15 12:29:51 -07:00
Mike Arpaia
3161e8cfeb
Merge pull request #48 from facebook/firewall
...
Virtual table for Apple's application level firewall
2014-08-14 11:33:53 -07:00
mike@arpaia.co
1a381e0feb
Virtual tables for Apple's application level firewall
2014-08-14 11:33:20 -07:00
mike@arpaia.co
2311022e7f
moving cocoa backports to core/osx
2014-08-13 23:20:58 -07:00
Mike Arpaia
5f9a24202f
Merge pull request #42 from facebook/kexts
...
Loaded kernel extensions vtable
2014-08-13 11:49:48 -07:00
mike@arpaia.co
e2bd07008d
[kextstat] osquery virtual table which uses the Core Foundation APIs to
...
expose kernel extension information.
For information about memory managament in Core Foudnation, see:
https://developer.apple.com/library/ios/documentation/CoreFoundation/Conceptual/CFMemoryMgmt/Concepts/Ownership.html#//apple_ref/doc/uid/20001148-103029
2014-08-13 11:48:53 -07:00
mike@arpaia.co
3b85618ae0
property list parsing with native C++ data types
2014-08-13 11:00:28 -07:00
mike@arpaia.co
7a56756073
moving sqlite to third-party
2014-08-11 17:37:49 -07:00
mike@arpaia.co
9a9ae03506
renaming CMakeLists.txt
2014-08-10 02:07:15 -07:00
mike@arpaia.co
7d9dc341ce
getting rid of bind1st and relevant headers
2014-08-06 16:24:44 -07:00
mike@arpaia.co
21afc0b75b
raw string literals in etc_hosts test content
2014-08-06 16:08:16 -07:00
mike@arpaia.co
4bec86c534
zwass' comment on etc_host table
2014-08-06 15:55:46 -07:00
mike@arpaia.co
1a114c4f18
bug fixes
2014-08-05 17:42:24 -07:00
mike@arpaia.co
7b3de7a3eb
implementation for /etc/hosts vtable
2014-08-05 17:42:24 -07:00
mike@arpaia.co
0c1e7de598
virtual table structure for #25 , the /etc/hosts vtable
2014-08-05 17:42:24 -07:00
mike@arpaia.co
7c81d42de5
reordering includes in cpp files
2014-08-05 17:37:04 -07:00
mike@arpaia.co
ec30260f37
core/status to status and header cleanup
2014-08-05 16:13:55 -07:00
mike@arpaia.co
f7a88ad771
automatic table loading
2014-08-05 01:21:28 -07:00
mike@arpaia.co
73a32b7294
Initial commit
2014-07-30 17:35:19 -07:00