osquery-defense-kit/incident_response/etc_hosts.sql

-- Retrieves all the entries in the target system /etc/hosts file.
--
-- interval: 86400
-- platform: posix
-- value: Identify network communications that are being redirected. Example: identify if security logging has been disabled
-- version: 1.4.5
select
  *
from
  etc_hosts;
v0.0.1 2022-10-13 13:11:17 +00:00			`-- Retrieves all the entries in the target system /etc/hosts file.`
			`--`
			`-- interval: 86400`
			`-- platform: posix`
			`-- value: Identify network communications that are being redirected. Example: identify if security logging has been disabled`
			`-- version: 1.4.5`
Apply 'npx sql-formatter -l sqlite' 2022-10-17 23:06:17 +00:00			`select`
			`*`
			`from`
			`etc_hosts;`