valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-07 09:58:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
5,366 Commits 2 Branches 109 Tags 25 MiB
ccffaf7d8a
Commit Graph

326 Commits

Author SHA1 Message Date
Giorgi Guliashvili
fa98cd5cc6
get rid of aliased flag log_result_events (#4970) 2018-08-20 20:42:40 +01:00
Giorgi Guliashvili
b30af3b6f2
remove primary logger concept (#4969) 2018-08-20 20:38:26 +01:00
ryandeivert
68be4f10fa [aws] adding aws proxy support in ClientConfiguration (#4850) 2018-08-17 10:25:10 +01:00
Filipe Manco
62cadb1661
Update linux installation guide (#4968) 2018-08-16 18:28:45 +01:00
Adrien Schildknecht
78eb9d4ce1 docs: fix the definition of 'posix' for the platform key (#4899) 2018-08-13 16:53:12 +01:00
Mike Myers
2b1e8eaf88 Improve extensions documentation (#4761) 2018-08-11 12:36:18 -04:00
Alexander
95e5dc7ebb
Use pre-aggregation cache for all records flowing thru numeric monitoring system (#4690) 
PR based on #4677 , have a look on it firstly.
 2018-07-17 09:31:51 +01:00
Allan Liu
8f4529d2a3 General SMART drive information virtual table (#4133) 2018-07-13 09:51:55 -04:00
Vova Mishatkin
dbac4ea67c
Add the ability to specify file_paths with sql queries (#4678) 2018-07-10 16:24:13 +01:00
Filipe Manco
9197810c76
Fix documentation for flag decorations_top_level (#4688) 2018-07-10 14:04:10 +01:00
Jonathan Keljo
f088f26c61 Add documentation for conditional column gen (#4673) 2018-07-08 10:10:42 -04:00
Kolokotronis Panagiotis
4270f75b94 Kafka logging plugin is called kafka_producer (#4594) 2018-06-23 12:01:27 +01:00
Chris Long
5ee495504f docs: Updating process auditing documentation (#4477) 2018-06-19 01:51:55 -04:00
Max Kareta
408c54565e
Removing macOS kernel module (#4572) 2018-06-17 19:21:07 +01:00
Alexander
18f46707fe
actualize names for *base64* family functions (#4568) 
Issue: #4563
 2018-06-15 11:37:01 +01:00
Daniel Roethlisberger
d326597756 MAC framework is not a supported KPI (#4484) 2018-06-04 11:04:49 -07:00
Nick Anderson
c7e571e5c3
docs: adding note about extensions using RJ (#4480) 2018-06-02 22:37:03 -07:00
Alessandro Gario
5006a02c27 Bundle C++ extensions into a single executable (#4335) 2018-06-03 02:04:36 +01:00
Brian Beyer
c4410d6d74 Fix typo in example (#4472) 2018-06-01 18:37:34 -07:00
Jeff Pace
2eadac3cc1 Updated documentation links back to the osquery website. (#4451) 2018-06-01 00:08:33 -07:00
Scott Lundgren
89fe2dc693 update building documentation to reference Windows (#4389) 2018-05-16 23:36:11 -04:00
Mohamed Bassem
fa96157301 Fixing OSQUERY_DEPS in building documentation (#4390) 2018-05-15 11:48:36 +01:00
Teddy Reed
6e9f55d15d
llvm 6.0 and libFuzzer implementation (#4370) 2018-05-12 21:56:00 -04:00
cankansin
122b3867bd wrong variable name, content should be config (#4385) 2018-05-12 10:23:41 -07:00
Eitan Adler
cbb22c887f Remove extraneous letter from CLI flags (#4334) 2018-04-27 14:14:57 -07:00
Dimitris Tsapakidis
b99a970f50 Fix typo in documentation readme (#4239) 2018-04-01 12:39:53 -04:00
Seshu Pasam
e45ddd98ce kafka: Support for kafka compression.codec (#4181) 2018-03-21 11:53:13 -07:00
Mitchell Grenier
26bd32687a
Add block on short-circuiting discovery queries (#4170) 2018-03-05 13:00:54 -08:00
Mike Arpaia
e48051697a Removing old website and cleaning up the docs directory (#4084) 2018-03-04 20:09:05 -05:00
Teddy Reed
2c682ee0ce
docs: Fix new table example and add leaks check (#4141) 2018-02-21 17:58:36 -08:00
Chris Long
e421c398a5 docs: Updating build docs to include make packages (#4068) 2018-02-11 01:58:35 -08:00
uptycs-nishant
c475fe880b TLS session reuse support (#3948) 2018-02-11 01:48:24 -08:00
Mike Arpaia
1c387b8abb Use schema branch of website instead of master for raw data (#4082) 2018-01-25 08:09:36 -08:00
Nick Anderson
825d850a15
site: updating website with links for windows msi (#4078) 2018-01-23 17:27:49 -08:00
Teddy Reed
597b60d5eb
website: Upload dark version of logo for README (#4065) 2018-01-15 12:50:51 -05:00
Teddy Reed
adad4ee8de
build: Set default macOS SDK to 10.11 (#4053) 2018-01-12 17:28:43 -05:00
Teddy Reed
687070352d
website: Add 2.11.2 release (#4050) 2018-01-12 10:25:08 -05:00
Teddy Reed
5777efffb4
deps: Add SKIP_DEPS control to CMake (#4036) 2018-01-07 14:32:24 -08:00
Ben Schmoker
966854028f docs: typo in mac setup instructions (#4010) 2017-12-28 21:13:19 -08:00
Thomas Broadley
f5c6113fc4 docs: fix typos (#4015) 2017-12-22 10:08:41 -08:00
UntilDoomsday
9c4c52962d docs: added note about fim file replacement (#4008) 2017-12-19 20:40:49 -08:00
Teddy Reed
0ec2cc3705
website: Add 2.11.0 release (#4011) 2017-12-19 20:39:41 -08:00
Teddy Reed
222f40f2d3
hash: Use the hash-cache by default and document flags (#4006) 2017-12-18 12:20:57 -08:00
Teddy Reed
e71390ca82
config: Allow scheduled queries to set blacklist=false (#4005) 2017-12-18 08:42:00 -08:00
Teddy Reed
a6998b7518
extensions: watchdog: Opt-in to monitor extension performance (#4003) 2017-12-17 16:33:20 -08:00
Teddy Reed
70a214b8a6
logger: Remove invalid assumptions about status logging (#4001) 2017-12-17 09:44:15 -08:00
Teddy Reed
a073bdc838
docs: Add short debugging note for events in osqueryi (#3993) 2017-12-12 21:27:09 -08:00
Alessandro Gario
e859276739 logging: Adds Windows Event Log support (#3887) 2017-12-12 14:15:38 -08:00
Brad Moylan
9f62c04f15 docs: Document --host_identifier=specified CLI option (#3974) 2017-12-04 11:03:56 -08:00
uptycs-nishant
473920d601 Removing cpp-netlib name references (#3978) 2017-11-30 11:08:48 -08:00
Seshu Pasam
1c141995a3 Kafka SSL support (#3921) 2017-11-30 09:13:46 -08:00
Teddy Reed
16d92d1dc6
docs: Remove quotes from flags documentation (#3937) 2017-11-18 15:22:33 -08:00
Teddy Reed
3f1a90c56b
website: Update building osquery blog article with office hours (#3933) 2017-11-16 15:01:24 -08:00
Teddy Reed
5ad0e599fc
website: Small blog post about community efforts (#3932) 2017-11-16 12:28:42 -08:00
Nick Anderson
f7fe7861e2
docs: Adding details on installing osquery on Windows as a service (#3705) 2017-11-15 13:20:22 -08:00
Teddy Reed
d34d62186d
website: Add 2.10.2 release (#3925) 2017-11-14 18:36:12 -08:00
Magicansk
8bf2d9e592 docs: Update process-auditing yara and debugging 2017-11-03 21:36:02 -07:00
Victor Vrantchan
ddd463419a website: Add community links to kolide blog (#3901) 2017-10-31 22:51:19 -07:00
Teddy Reed
9422a9f631
release: Update website release to 2.10.0 (#3895) 2017-10-28 19:16:36 -07:00
Javier Marcos
f256c3a75c Pointing tables/schema documentation to new locations (#3878) 2017-10-24 11:40:09 -07:00
uptycs-nishant
d8b700ab74 Implementing http_client based on boost.beast and adding proxy support to tls logger (#3623) 2017-10-22 22:00:29 -07:00
Brandon Kurtz
1eb70e563a removal instructions for osquery on macOS (#3872) 2017-10-22 15:16:41 -07:00
Seshu Pasam
40eaddb088 build: Add OSQUERY_NOSUDO to build without sudo (#3789) 2017-10-16 23:19:33 -07:00
Teddy Reed
418973f333 Add logger_snapshot_event_type flag for snapshot events (#3838) 2017-10-16 21:16:52 -07:00
Teddy Reed
869ac6fe5e website: Prevent readthedocs from a 301 to http (#3836) 2017-10-15 17:33:52 -07:00
Teddy Reed
437accd0ef website: Point docs link to readthedocs (#3833) 2017-10-14 17:06:59 -07:00
Nick Anderson
b4380854c9 website: removing offending character for site build (#3822) 2017-10-11 17:17:58 -07:00
Chris Long
97318f0f63 Add more to resources.yml (#3821) 2017-10-11 17:10:17 -07:00
Mike Myers
65c8992983 Add new blog post about osquery's use for examining Authenticode (#3817) 2017-10-11 09:40:54 -07:00
Aaron Salvo
c769aefcff The curl command as given results in a 302. Added -L to the command so the redirect is followed. (#3807) 2017-10-08 17:57:50 -07:00
Michael Jalkio
a3f6341e62 website: Add previous version downloads (#3799) 2017-10-06 17:25:06 -07:00
Teddy Reed
0885e6b1b3 website: Add 2.9.0 schema (#3794) 2017-10-05 20:22:10 -07:00
Teddy Reed
fc834a22d7 website: Fix redirects with /osquery using empty baseurl (#3758) 2017-10-03 00:20:30 -07:00
Teddy Reed
9e779a56e6 website: Render 2.8.0 schema and add schema scrollTo (#3752) 2017-09-30 11:07:05 -07:00
Teddy Reed
195690d6d1 release: Add 2.8.0 hashes and new_release script (#3745) 2017-09-28 21:58:19 -07:00
Teddy Reed
b425ca2da4 website: Add static files and security assessment (#3738) 2017-09-27 15:18:52 -07:00
Teddy Reed
916f13ccc4 website: Fix missing redirects for tables and packs (#3737) 2017-09-27 15:01:21 -07:00
Seshu Pasam
97b2c3e76d website: Split example SQL (#3730) 2017-09-24 22:27:03 -07:00
Teddy Reed
e471e5032d website: Add Jekyll CI checks using html-proofer (#3729) 2017-09-24 21:09:52 -07:00
Teddy Reed
1576c4076b website: Add the packs view (#3728) 2017-09-24 20:39:59 -07:00
Teddy Reed
8d8e724941 website: Add github buttons and footer links (#3723) 2017-09-24 10:40:48 -07:00
Teddy Reed
ed69fda9a0 website: Include redirects fix schema sorting add old schema (#3722) 2017-09-23 17:17:16 -07:00
Teddy Reed
0824d5545c website: Remove home link and change schema URL to osquery/osquery-site (#3721) 2017-09-23 16:00:46 -07:00
Teddy Reed
706d2f3965 website: Add initial osquery.io redesign (#3713) 2017-09-21 00:54:08 -07:00
Teddy Reed
450ed67422 watcher: Add more details to the utilization limits docs (#3677) 2017-09-12 21:54:49 -07:00
Teddy Reed
c1ad74cbe7 enroll: Add host_details to TLSEnrollPlugin (#3675) 2017-09-09 19:10:46 -07:00
Teddy Reed
8dc4268761 kernel: Disable kernel support by default (#3672) 2017-09-09 16:48:39 -07:00
Allan Liu
1cd4ed949f kafka logger: Kafka producer implemented as a Logger plugin (#3155) 2017-09-09 10:38:01 -07:00
Seshu Pasam
6fab8b6083 logging: adding "counter" to differentiate initial results (#3651) 
When setting up alerts for differential logs data you might want to skip the
initial added records. counter can be used to identify if the added records
are all records from initial query of if they are new records. For initial
query results that includes all records counter will be "0". For subsequent
query executions counter will be incremented by 1. When epoch changes, counter
will be reset back to "0".
 2017-09-07 15:01:15 -07:00
Teddy Reed
205da3c698 rocksdb: Implement a 'backup' and recover feature for RocksDB (#3635) 2017-09-01 22:31:03 -07:00
uptycs-nishant
5a92d2c7f0 Implementing exclude paths for FIM (#3530) 2017-08-19 19:59:23 -07:00
Mitchell Grenier
b22a403bf1 OpenBSM Events (#3503) 2017-08-07 16:02:16 -07:00
Seshu Pasam
32ad42aea0 EC2 instance metadata implementation. (#3502) 2017-08-03 17:54:17 -07:00
Lambda Conjecture
ecb9e2ccf2 Add Epoch marker to scheduled query results (#3378) 2017-07-07 17:56:03 -07:00
Teddy Reed
99675fdbb2 audit: Increase speed when using socket_events (#3449) 2017-07-02 17:18:40 -07:00
Seshu Pasam
07c9de4566 Document docker socket CLI flag. (#3430) 2017-06-21 08:28:51 -07:00
Seshu Pasam
2fd90bd5c1 Custom directory flag for augeas lenses (#3428) 2017-06-20 20:54:27 -07:00
Victor Vrantchan
51ec8cf6ef document verbose flag passed to extensions (#3424) 2017-06-20 20:15:03 -07:00
Teddy Reed
dae221e331 virtual tables: Allow tables to use an 'extended' schema (#3416) 2017-06-18 14:27:18 -07:00
Teddy Reed
a66192903c docs: Quick pass through documentation (#3391) 2017-06-09 01:47:16 +01:00