valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-08 10:23:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,918 Commits 2 Branches 109 Tags 25 MiB
9053a1f125
Commit Graph

2918 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Teddy Reed
2379493721 Introduce decorator queries 2016-03-29 10:03:50 -07:00
Mike Arpaia
d70affe3d3 [Fix #1962] Clear cache of distributed query results after flush 
If the distributed plugin's `writeResults` method can be successfully
called, we must clear the local vector of results so that we're not
constantly growing it over time.
 2016-03-29 09:26:27 -07:00
Teddy Reed
c2a364c573 Merge pull request #1982 from zwass/asl_test_fix 
Update flaky test for ASL table
 2016-03-28 17:51:40 -07:00
Zachary Wasserman
91691f71d6 Update flaky test for ASL table 
Previously, this test relied on there being console messages available
to query for. Now, it actually writes a message to ASL, then verifies
that the message can be found. It also exercises a more complicated
query than previously. Also remove potentially high latency queries.

Fixes issue #1975
 2016-03-28 14:06:53 -07:00
Teddy Reed
d71fa5b46a Remove forking from systemd service 2016-03-27 15:11:20 -07:00
Teddy Reed
2a350afb10 Merge pull request #1974 from theopolis/sane_logging_disable 
[Fix #1973] Improve logging/extensions relays
 2016-03-27 01:00:16 -07:00
Teddy Reed
b9194026db [Fix #1973] Improve logging/extensions relays 2016-03-27 00:43:02 -07:00
Teddy Reed
e663d91f00 Merge pull request #1972 from theopolis/fix_1971 
[Fix #1971] Use recursive locks for config data predicates
 2016-03-26 22:27:45 -07:00
Teddy Reed
1b83ecb30b Merge pull request #1970 from Centurion89/add_adware_osxattacks 
Adding detection for new adware variants to osx-attacks
 2016-03-26 22:27:24 -07:00
Chris Long
de1c630850 Adding wildcards 2016-03-27 00:10:27 -05:00
Teddy Reed
a18444813b [Fix #1971] Use recursive locks for config data predicates 2016-03-26 21:52:22 -07:00
Teddy Reed
68f3eb5b43 Merge pull request #1967 from zwass/create_table_docfix 
Collection of doc fixes
 2016-03-26 21:08:59 -07:00
Chris Long
c9e4f8038d Adding detection for new adware variants to osx-attacks 2016-03-26 10:47:44 -05:00
Teddy Reed
7ea46759d1 Merge pull request #1968 from synapsis2112/osquery_systemd] 
systemd properly supervised
 2016-03-25 18:35:02 -07:00
Matt Moran
f1bdf23d88 systemd properly supervised 2016-03-25 14:12:48 -07:00
Zachary Wasserman
0eff0f2f4e Collection of doc fixes 
- Minor fix in creating tables documentation
- Fix docs for join
- Add note about config paths
- Update events docs
- Fix link to query packs
 2016-03-25 14:12:41 -07:00
Teddy Reed
9f237479dc Merge pull request #1965 from sroberts/patch-1 
Inconsistant Pathing for Flags File
 2016-03-25 12:32:16 -07:00
Scott J. Roberts
9653b81833 Inconsistant Pathing 
When I added the flag file switch it was aimed at `/var/osquery`, but the package is built such that everything exists in `/private/var/osquery`. This simply makes this more consistent.
 2016-03-25 13:55:52 -04:00
Teddy Reed
684697ba8d Merge pull request #1963 from theopolis/yara_move 
Add move events to yara_events
 2016-03-24 12:16:18 -07:00
Teddy Reed
339f142da4 Add move events to yara_events 2016-03-24 11:24:54 -07:00
Teddy Reed
6f034a7156 Merge pull request #1957 from theopolis/events_dispatcher 
Move dispatcher to public API
 2016-03-21 15:58:47 -07:00
Teddy Reed
d2d1431061 Move dispatcher to public API 2016-03-21 15:27:51 -07:00
Teddy Reed
52a3285c18 Merge pull request #1953 from theopolis/pgroup 
[Fix #1878] Rename processes 'group' to 'pgroup'
 2016-03-20 22:14:08 -07:00
Teddy Reed
5ae039ffb0 Merge pull request #1954 from theopolis/fix_#1928 
[Fix #1928] Reorder deps installs to build all with clang
 2016-03-20 20:11:36 -07:00
Teddy Reed
eb76fc1860 Rename processes 'group' to 'pgroup' 2016-03-20 19:35:49 -07:00
Teddy Reed
27f4754e5e [Fix #1928] Reorder deps installs to build all with clang 2016-03-20 19:15:44 -07:00
Teddy Reed
cddd2e2772 Merge pull request #1955 from theopolis/harden_udev 
Protect udev publisher from fast interrupts
 2016-03-20 19:15:33 -07:00
Teddy Reed
482eecfab1 Protect udev publisher from fast interrupts 2016-03-20 18:46:34 -07:00
Teddy Reed
59196b6f44 Merge pull request #1952 from theopolis/profile_fix 
Fix shell's --profile switch
 2016-03-20 16:37:46 -07:00
Teddy Reed
ebb0ab30ce Fix shell's --profile switch 2016-03-20 16:05:13 -07:00
Teddy Reed
89c32de89d Merge pull request #1950 from friedbutter/signature_multiple_results 
add feature to select multiple rows to signature table
 2016-03-20 13:53:09 -07:00
Teddy Reed
0ab1a156cd Merge pull request #1882 from waywardmonkeys/patch-1 
Fix typos in example conf.
 2016-03-20 12:02:23 -07:00
Teddy Reed
b2950c29c3 Merge pull request #1949 from theopolis/extensions_exit 
Use the default shutdown flow within extensions
 2016-03-20 10:55:29 -07:00
Teddy Reed
15a998e54f Use the default shutdown flow within extensions 2016-03-20 01:45:49 -07:00
Teddy Reed
78b2739adc Merge pull request #1948 from theopolis/update_readme 
Update Slack link in README
 2016-03-19 20:23:10 -07:00
Sereyvathana Ty
0706146c01 add feature to select multiple rows to signature table 2016-03-19 17:42:21 -07:00
Teddy Reed
4609486f74 Merge pull request #1947 from theopolis/osx_publisher_locks 
Enhance publisher resource locking on OS X
 2016-03-18 19:13:55 -07:00
Teddy Reed
54578df073 Merge pull request #1946 from theopolis/debian_packages_fixup 
Fixup Debian package builds
 2016-03-18 18:17:33 -07:00
Teddy Reed
f75c3cf704 Update Slack link in README 2016-03-18 17:05:31 -07:00
Teddy Reed
9f5de79af1 Fixup Debian package builds 2016-03-18 16:59:59 -07:00
Teddy Reed
d7c2f88289 Enhance publisher resource locking on OS X 2016-03-18 16:14:15 -07:00
Teddy Reed
4a88311ca2 Merge pull request #1944 from theopolis/tls_config_interrupt 
Check for interrupt requests in TLS config refresher
 2016-03-18 12:50:27 -07:00
Teddy Reed
3576189281 Check for interrupt requests in TLS config refresher 2016-03-18 12:03:27 -07:00
Teddy Reed
265ca2ff76 Merge pull request #1942 from theopolis/cleanups3 
Various cleanups
 2016-03-18 11:11:19 -07:00
Teddy Reed
c62a0f41b6 Various cleanups 2016-03-18 10:40:07 -07:00
Teddy Reed
81109efe04 Merge pull request #1937 from umareddy/patch-1 
Update extensions.md
 2016-03-17 09:50:40 -07:00
Uma Reddy
e421bfa54b Update extensions.md 2016-03-17 12:47:13 -04:00
Teddy Reed
66d595edd9 Merge pull request #1935 from zwass/patch-1 
Change .clang-format standard from Cpp03 to Cpp11
 2016-03-16 23:29:05 -07:00
Teddy Reed
3e103e69ba Merge pull request #1931 from ilovezfs/iokitlib-header-casesensitivity 
IOKitLib.h not IOKitlib.h
 2016-03-16 22:32:03 -07:00
Teddy Reed
593f024514 Merge pull request #1936 from theopolis/events_ex 
Expire data when record is before expire time
 2016-03-16 12:58:21 -07:00