osquery-1

mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-07 18:08:53 +00:00

Author	SHA1	Message	Date
Teddy Reed	f5d478ff6c	Merge pull request #1537 from mlw/fix-empty-config-md5-hash Fixed bug when checking if config is valid	2015-09-30 13:33:20 -07:00
Teddy Reed	ad4b41cb84	Merge pull request #1524 from mathieuk/build_on_debian_wheezy_with_benchmark_change Build on debian wheezy with recent changes	2015-09-30 13:32:55 -07:00
Matthew White	25dbd33e1e	Fixed bug when checking if config is valid	2015-09-30 10:50:28 -07:00
Mathieu Kooiman	d26d12a63c	Make osquery build on debian again	2015-09-30 19:37:56 +02:00
Teddy Reed	2a71162b0c	Merge pull request #1534 from theopolis/glob_fix Fix potential hang with recursive globbing	2015-09-28 18:06:53 -07:00
Teddy Reed	ef50adbb14	Merge pull request #1533 from theopolis/fix_1531 [Fix #1531] Use libarchive finish for safari_extension parsing	2015-09-28 18:06:42 -07:00
Teddy Reed	66888de80a	Fix potential hang with recursive globbing	2015-09-28 17:50:25 -07:00
Teddy Reed	31b7966088	[Fix #1531 ] Use libarchive finish for safari_extension parsing	2015-09-28 17:33:42 -07:00
Teddy Reed	cbf9a17b4a	Merge pull request #1530 from theopolis/fix_db_proc [#1529] Allow DB Readonly with RocksDB lite	2015-09-28 09:50:36 -07:00
Teddy Reed	bbac2cf07f	[#1529 ] Allow DB Readonly with RocksDB lite	2015-09-28 01:50:32 -07:00
Teddy Reed	64c18a70a9	Merge pull request #1525 from theopolis/process_adds Add state, group, and nice to processes	2015-09-24 14:43:17 -07:00
Teddy Reed	5890901c00	Add state, group, and nice to processes	2015-09-24 13:11:46 -07:00
Teddy Reed	2d4150499a	Merge pull request #1526 from theopolis/linux_sigs [#1488] Shutdown Linux event publishers responsibly	2015-09-24 11:08:41 -07:00
Teddy Reed	bb65ec49ac	[#1488 ] Shutdown Linux event publishers responsibly	2015-09-22 23:06:23 -07:00
Mike Arpaia	327a9bcdb1	Merge pull request #1522 from marpaia/startup_items Include system startup items	2015-09-22 16:06:20 -07:00
Mike Arpaia	b09031adda	Include system startup items We were not parsing system startup items.	2015-09-22 15:50:55 -07:00
Teddy Reed	0b006f28c7	Merge pull request #1519 from theopolis/osx_events [#1488] Stop OS X event publishers with SIGINT	2015-09-22 09:14:47 -07:00
Teddy Reed	97ca0e627a	[#1488 ] Stop OS X event publishers with SIGINT	2015-09-21 22:02:27 -07:00
Mike Arpaia	4021a742df	Merge pull request #1507 from jacknagz/os_version_rhel RHEL os_version fix	2015-09-21 18:03:03 -07:00
Teddy Reed	709479becc	Merge pull request #1516 from theopolis/db_nice_errors Write helpful DB access/open error to verbose log	2015-09-20 11:18:45 -07:00
Teddy Reed	284dac71de	Write helpful DB access/open error to verbose log	2015-09-20 10:35:26 -07:00
Teddy Reed	946ab354ff	Merge pull request #1517 from theopolis/fix_yara Fix YARA sigfile caching	2015-09-20 10:34:29 -07:00
Teddy Reed	d042967f43	Fix YARA sigfile caching	2015-09-20 00:06:57 -07:00
Jack Naglieri	9c1e114728	Fix os_version table regex for REDHAT_BASED systems. Updating centos6/7 and freebsd10 Vagrant boxes.	2015-09-18 14:47:08 -07:00
Mike Arpaia	a0795f300b	Merge pull request #1512 from theopolis/schedule_tracking Scheduled query success tracking	2015-09-17 13:39:04 -07:00
Teddy Reed	c51d214ddd	Scheduled query success tracking	2015-09-16 23:31:07 -07:00
Mike Arpaia	89789f50a9	Merge pull request #1511 from marpaia/packs-move Moving packs to top level include directory	2015-09-16 18:16:52 -07:00
Mike Arpaia	73045e4974	Moving packs to top level include directory I could've swore that I did this already, but this moves `include/osquery/config/packs.h` to `include/osquery/packs.h`.	2015-09-16 15:51:05 -07:00
Teddy Reed	52daba67b7	Merge pull request #1509 from theopolis/nice_kernel [#1506] Silent kext loading messages from syslog	2015-09-16 13:44:14 -07:00
Teddy Reed	333f2ce8c8	[#1506 ] Silent kext loading messages from syslog	2015-09-16 13:13:56 -07:00
Mike Arpaia	3d81223dfb	Merge pull request #1508 from marpaia/distributed_test_fixes Making distributed tests more awesome and less flaky	2015-09-16 12:05:51 -07:00
Mike Arpaia	e8d91189e9	Merge pull request #1510 from marpaia/fix-1504 Only log to warning if the config can't be read by the daemon	2015-09-16 11:16:24 -07:00
Mike Arpaia	dc6e395b77	Only log to warning if the config can't be read by the daemon fix #1504	2015-09-16 10:54:38 -07:00
Mike Arpaia	41ef6798c6	Making distributed tests more awesome and less flaky Distributed tests were failing every now and then because the test plugin didn't implement retry's and the test server wasn't always starting up fast enough. I fixed this by refactoring the tests to use the real TLS plugin, which has retry logic. This required some mangling of the configuration options, which should serve as a good reference as well.	2015-09-16 10:36:34 -07:00
Teddy Reed	7852c356ec	Merge pull request #1494 from theopolis/signals [#1488] Use signal handlers for teardown and reloading	2015-09-15 16:14:40 -07:00
Teddy Reed	65162e7239	Merge pull request #1501 from sharvilshah/sysinfo_updates Update system_info table to include CPU type, CPU cores and total memory	2015-09-14 20:02:56 -04:00
Teddy Reed	7c2a625ef2	Use signal handlers for teardown and reloading	2015-09-14 16:57:00 -07:00
Teddy Reed	944e3de206	Merge pull request #1496 from theopolis/events_table [#1487] Add osquery_events table to track pubsub stats	2015-09-14 15:27:35 -04:00
Mike Arpaia	54ce2f5d66	Merge pull request #1503 from mlw/master Fix build for Ubuntu Lucid	2015-09-11 15:41:17 -07:00
Sharvil Shah	28143f64f0	Update system_info table: adds CPU type, CPU cores and total memory. This change adds following columns to `system_info` table: cpu_type, cpu_subtype, cpu_brand, cpu_physical_cores, cpu_logical_cores, physical_memory, hardware_model Here's an example output of those columns: ``` cpu_type = x86_64h cpu_subtype = Intel x86-64h Haswell cpu_brand = Intel(R) Core(TM) i7-4850HQ CPU @ 2.30GHz cpu_physical_cores = 4 cpu_logical_cores = 8 physical_memory = 17179869184 hardware_model = MacBookPro11,3 ```	2015-09-10 14:44:48 -07:00
Matthew White	28d456a2f1	Fix build for Ubuntu Lucid	2015-09-10 13:55:59 -04:00
Mike Arpaia	ee125a34eb	Merge pull request #1490 from 0xdabbad00/1447-collect_hostname Added system_info table	2015-09-09 19:00:23 -07:00
Scott Piper	5e7d0d6a37	Added system_info table	2015-09-09 10:26:16 -07:00
Mike Arpaia	9929c61c94	Merge pull request #1500 from marpaia/remote Client-side implementation of distributed queries	2015-09-08 15:02:32 -07:00
Mike Arpaia	aaa03a1058	Distributed queries client-side	2015-09-08 13:33:48 -07:00
Mike Arpaia	2a20804f59	Merge pull request #1499 from marpaia/flub Removing remnants of a refactoring from Christmas Past	2015-09-07 17:34:20 -04:00
Mike Arpaia	07283817cb	Removing remnants of a refactoring from Christmas Past	2015-09-04 11:33:33 -07:00
Mike Arpaia	041cc6784e	Merge pull request #1495 from marpaia/config-md5 Config MD5 a bit more deterministic	2015-09-03 22:24:22 -07:00
Mike Arpaia	de58353131	Config MD5 a bit more deterministic ``` $ ./build/darwin/osquery/osqueryi --config_path=/asdfasdfadfs E0903 11:45:02.050308 1990836992 init.cpp:370] Error reading config: config file does not exist Using a virtual database. Need help, type '.help' osquery> .mode line osquery> .all osquery_info pid = 33700 version = 1.5.2-43-gb06fa92 config_md5 = config_valid = 0 config_path = /asdfasdfadfs extensions = active build_platform = darwin build_distro = 10.10 osquery> .exit $ ./build/darwin/osquery/osqueryi osquery> .mode line osquery> .all osquery_info pid = 33781 version = 1.5.2-43-gb06fa92 config_md5 = 8a432ac93d3de080c62d77ba99b89783 config_valid = 1 config_path = /var/osquery/osquery.conf extensions = active build_platform = darwin build_distro = 10.10 osquery> .exit ```	2015-09-03 22:03:40 -07:00
Teddy Reed	b57040db60	Add osquery_events table to track pubsub stats	2015-09-03 15:10:53 -07:00

1 2 3 4 5 ...

2297 Commits