valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-07 18:08:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3,644 Commits 2 Branches 109 Tags 25 MiB
e8c39c5572
Commit Graph

2118 Commits

Author SHA1 Message Date
Teddy Reed
e8c39c5572 hashing: Add sha1, sha256, md5 functions (#3267) 2017-05-09 23:55:49 -07:00
ryanheffernan
b54504ef16 Refactoring Windows registry table to use unique_pr and return status on failure (#3228) 2017-05-08 10:42:44 -07:00
Dan Sedlacek
1413008642 [fix #3257] report proper routes for 0.0.0.0 (#3259) 2017-05-08 01:44:42 -07:00
Nick Anderson
8fdb0a6945 Adding distributed workid to carver (#3252) 2017-05-05 15:14:21 -07:00
Seshu Pasam
4cfb31452c Docker support (#3241) 2017-05-05 09:53:12 -07:00
Nick Anderson
04dbbebeac [Fix 3249] Addressing permissive build fail (#3250) 2017-05-04 23:33:32 -07:00
Teddy Reed
582ab52e8f build: Remove SYSTEMD and _BASED logic (#3245) 2017-05-03 22:28:33 -07:00
lxcode
9482220bf0 Make sysctls work on FreeBSD (#3242) 2017-05-02 18:25:25 -07:00
Teddy Reed
bc13431394 freebsd: Fix tests and additional_tests (process, config) (#3239) 2017-04-29 19:53:53 -07:00
Teddy Reed
6496c2eef7 database: Remove SKIP_ROCKSDB build option (#3235) 2017-04-28 17:48:45 -07:00
Teddy Reed
4372785d5d Refactor build logic to allow optional: yara, tsk, lldpd (#3226) 2017-04-28 13:45:41 -07:00
ryanheffernan
0458abc453 Split Startup items 'path' column into 'path' and 'args' 2017-04-27 23:56:08 -04:00
lxcode
03a9798b7e FreeBSD: add functional routes.cpp, unblacklist modules (#3225) 2017-04-27 16:34:31 -07:00
Teddy Reed
e52f85f95e database: Move r/w reset lock for extensions (#3219) 2017-04-27 00:55:02 -07:00
Robin Breathe
cbc34c44fe Darwin: Add channel column to wifi_status and wifi_survey tables (#3221) 2017-04-26 14:41:24 -07:00
ryanheffernan
62dda71321 Refactor Windows Service Table to use std::unique_ptr (#3203) 2017-04-24 12:16:10 -07:00
Teddy Reed
ca8a919602 database: Fix TSAN-detected reset lock inversion (#3207) 2017-04-24 07:51:05 -07:00
Teddy Reed
66c177945e logger: Require an open DB for status logs (#3205) 2017-04-23 13:16:12 -07:00
Teddy Reed
8b58e13733 rpm: Improve librpm safety (#3200) 2017-04-23 12:36:39 -07:00
Teddy Reed
65ef94f053 logger: Fixes to allow plugins access to hostIDs (#3197) 2017-04-22 18:24:25 -07:00
Teddy Reed
0374fde651 [Fix #3194] Remove qualified name from parseEvent declaration (#3198) 2017-04-22 18:16:20 -07:00
Gregory Heimbuecher
c5fd96cdf3 Fix #2838: Adds the event_taps table to Darwin (#3188) 2017-04-21 15:55:12 -07:00
Grigoriy Chudnov
e3a2445480 Add database init retry (#3179) 2017-04-21 15:32:40 -07:00
Teddy Reed
e817f3919e Add hardware_disabled_types flag to control hardware_events (#3190) 2017-04-21 11:14:35 -07:00
Mitchell Grenier
d5f002d447 Adding a table for Time Machine Backup Destinations (#3177) 2017-04-20 19:15:29 -07:00
Mitchell Grenier
8474cf640b Drop permissions properly on Linux (#3187) 2017-04-20 19:02:09 -07:00
Nick Anderson
13524f8833 Adding file carving feature to osquery (#3038) 2017-04-20 19:00:26 -07:00
Dan Sedlacek
13aef1fb73 Windows Network Routes (#3040) 2017-04-19 20:03:20 -07:00
Nick Anderson
e3ebc47498 Grabbing additional data fields for windows event logs (#3183) 2017-04-19 16:09:49 -07:00
Nick Anderson
6ba48afef6 Adding support for quote wrapped windows event channels (#3175) 2017-04-19 09:18:44 -07:00
tpott
17ab40db51 Add specified identifier via GFlags (#3165) 2017-04-18 22:30:55 -07:00
Nick Anderson
318dfe2d0d Fixing stringToWstring crashes with wide character strings (#3170) 2017-04-18 09:25:30 -07:00
Nick Anderson
352b43a4d5 Adding bounds checks and key checks for appcompat shims table (#3169) 2017-04-16 16:14:17 -07:00
Teddy Reed
90078f15ea events: Add hidden EID to all events tables (#3159) 2017-04-14 08:20:20 -07:00
Nick Anderson
6a90db47be Adding the Windows Scheduled Tasks virtual table (#3153) 2017-04-13 07:53:49 -07:00
Teddy Reed
b3ee6c9a8d tables: Fix table metadata when constraints are used (#3151) 2017-04-12 21:48:28 -07:00
Teddy Reed
649afcfff1 events: Use generator-tables for event subscribers (#3150) 2017-04-12 21:45:41 -07:00
Teddy Reed
c5e6db36eb events: Use poll instead of select for audit and udev (#3158) 2017-04-12 16:10:11 -07:00
Teddy Reed
5fd11260ad inotify: Use poll over select in inotify publisher (#3157) 2017-04-12 16:09:48 -07:00
Teddy Reed
ae4cb0ba28 extensions: Catch Thrift transport close exception (#3160) 2017-04-10 22:37:56 -07:00
Teddy Reed
67440ab101 tests: Rewrite and add filesystem tests (#3156) 2017-04-10 21:32:16 -07:00
yying
31b78cb996 Adding hostIdentifier, calendarTime, unixTime to status logging (#3146) 2017-04-10 11:56:23 -07:00
Teddy Reed
201fbc6707 extensions: Improve extensions and interface headers (#3154) 2017-04-10 08:59:06 -07:00
Teddy Reed
76fe5d748c logging: Allow Glog reentrancy (#3142) 2017-04-06 15:57:44 -07:00
ryanheffernan
d1a191cbd2 Adding 32-bit Items to Windows startup_info table (#3144) 2017-04-06 14:46:05 -07:00
Teddy Reed
7fdbfe2a77 freebsd: Link rocksdb-lite (#3141) 2017-04-05 16:46:04 -07:00
ryanheffernan
f32ceb306b Adding Windows Startup Info Table (#3137) 2017-04-05 15:14:28 -07:00
ryanheffernan
da427ab6c0 [Fix #3138] Adding index on 'key' column of Windows Registry table (#3139) 2017-04-05 13:02:36 -06:00
Teddy Reed
23f2c3a4ff remote: Fix output size for TLS compression (#3133) 2017-04-04 18:48:31 -07:00
ryanheffernan
c91b905091 Allowing OR clause in registry virtual table (#3136) 2017-04-04 15:43:06 -07:00