osquery-1/specs
Alessandro Gario 444b2cc017
Audit: Implement support for fork/vfork/clone/execveat (#5701)
* Audit: Implement support for fork/vfork/clone/execveat

Also implement a test target for the process_events table
2019-08-23 16:09:00 +02:00
..
darwin tables: implement ibridge table to report on T1/T2 chip for mac notebooks (#5707) 2019-08-19 17:41:24 -04:00
freebsd Add table for FreeBSD kernel modules. (#3328) 2017-05-26 15:10:59 -07:00
linux Spelling (#5256) 2019-01-16 08:17:07 -08:00
linwin tables: adding intel_me_info virtual table on Windows (#3960) 2017-11-27 11:26:08 -08:00
lldpd Refactor build logic to allow optional: yara, tsk, lldpd (#3226) 2017-04-28 13:45:41 -07:00
macwin windows/certificates: Fix enumeration bugs, add columns (#5631) 2019-07-16 17:34:39 +02:00
posix Audit: Implement support for fork/vfork/clone/execveat (#5701) 2019-08-23 16:09:00 +02:00
sleuthkit Refactor build logic to allow optional: yara, tsk, lldpd (#3226) 2017-04-28 13:45:41 -07:00
smart General SMART drive information virtual table (#4133) 2018-07-13 09:51:55 -04:00
utility Add Windows product version information to file table (#5431) 2019-02-21 13:45:46 -08:00
windows windows/logical_drives: Refactor (#5400) 2019-02-26 16:03:20 -08:00
yara Refactor build logic to allow optional: yara, tsk, lldpd (#3226) 2017-04-28 13:45:41 -07:00
arp_cache.table [windows] arp_cache virtual table (#2839) 2017-01-10 19:09:46 -08:00
atom_packages.table Osquery support for atom packages 2019-01-16 03:12:54 -08:00
blacklist SMBIOS oem_strings table (#4849) 2018-08-22 20:02:40 -04:00
BUCK tables: implement ibridge table to report on T1/T2 chip for mac notebooks (#5707) 2019-08-19 17:41:24 -04:00
carbon_black_info.table Make all descriptions use periods consistently. (#3324) 2017-05-25 12:43:58 -07:00
carves.table Make all descriptions use periods consistently. (#3324) 2017-05-25 12:43:58 -07:00
chrome_extensions.table chrome_extensions: Add the profile name to the table (#5213) 2019-03-27 03:02:16 -07:00
CMakeLists.txt tables: implement ibridge table to report on T1/T2 chip for mac notebooks (#5707) 2019-08-19 17:41:24 -04:00
cpuid.table Adding description to all the missing table fields 2015-07-15 23:23:42 -07:00
curl_certificate.table tables: Refactor ssl_cert into curl_certificate (#3903) 2017-11-01 07:30:22 -07:00
curl.table tables: Move the curl table to all platforms (#3904) 2017-10-31 23:44:46 -07:00
etc_hosts.table Adding etc_hosts virtual table to windows (#2381) 2016-08-24 17:02:14 +01:00
etc_protocols.table Add virtual table: Windows etc_protocols (#2590) 2016-10-04 19:08:27 -07:00
etc_services.table [Fixes #2594] windows: Implement the etc_services table (#2595) 2016-10-06 14:06:44 -07:00
example.table Move specs to a top-level path, add query examples 2015-06-03 10:39:05 -07:00
groups.table fixing the mixed line-endings causing PyAST error (#5645) 2019-07-18 20:10:30 -07:00
hash.table Add ssdeep table for posix (#4629) 2018-06-29 19:50:47 +01:00
interface_addresses.table [Table sanity check] sanity check for the table interface_addresses (#5142) 2018-08-31 14:28:26 +01:00
interface_details.table Move build system to BUCK 2018-12-07 16:12:35 +00:00
kernel_info.table Add virtual table: Windows Kernel_info (#2610) 2016-10-11 17:46:26 -07:00
listening_ports.table List all sockets (host and containers) in process_open_sockets (#4024) 2018-02-22 00:36:51 +00:00
logged_in_users.table windows/logged_in_users: Add sid, hive columns (#5454) 2019-02-27 05:52:56 -08:00
os_version.table Add InstallDate to os_version for Windows (#5226) 2018-09-14 16:07:37 -07:00
platform_info.table Adding support for Windows platform_info table (#2611) 2016-10-12 09:01:32 -07:00
process_memory_map.table tables: porting the process_memory_map table to windows (#3587) 2017-08-21 21:47:45 -07:00
process_open_sockets.table mac: add 'state' to process_open_sockets (#4253) 2018-05-15 11:28:42 +01:00
processes.table Change semantics of 'start_time' colume in processes table (#5414) 2019-02-05 03:50:20 -08:00
python_packages.table Improve Python packages table (#4407) 2018-05-24 09:14:44 -07:00
routes.table tables: netmask should be an integer (#5217) 2018-09-14 16:13:37 +01:00
system_info.table tables: fix cpu_physical_cores and cpu_logical_cores on linux (#4848) 2018-08-14 15:30:38 +01:00
uptime.table Adding description to all the missing table fields 2015-07-15 23:23:42 -07:00
user_groups.table tables: adding user_groups table for Windows (#4217) 2018-05-14 16:48:16 -07:00
users.table Added is_hidden column to the users and groups tables on macOS. (#5368) 2019-01-30 09:07:56 -08:00