mirror of
https://github.com/valitydev/osquery-1.git
synced 2024-11-08 18:33:54 +00:00
16 lines
869 B
Plaintext
16 lines
869 B
Plaintext
table_name("osquery_info")
|
|
description("Top level information about the running version of osquery.")
|
|
schema([
|
|
Column("pid", INTEGER, "Process (or thread/handle) ID"),
|
|
Column("version", TEXT, "osquery toolkit version"),
|
|
Column("config_hash", TEXT, "Hash of the working configuration state"),
|
|
Column("config_valid", INTEGER, "1 if the config was loaded and considered valid, else 0"),
|
|
Column("extensions", TEXT, "osquery extensions status"),
|
|
Column("build_platform", TEXT, "osquery toolkit build platform"),
|
|
Column("build_distro", TEXT, "osquery toolkit platform distribution name (os version)"),
|
|
Column("start_time", INTEGER, "UNIX time in seconds when the process started"),
|
|
Column("watcher", INTEGER, "Process (or thread/handle) ID of optional watcher process")
|
|
])
|
|
attributes(utility=True)
|
|
implementation("osquery@genOsqueryInfo")
|