Thomas Stromberg
|
9b0ed09c8e
|
fpr: xdg, docker, dbus, bpfilter_umh, docker, spotify, mage
|
2023-03-28 16:25:26 -04:00 |
|
Thomas Stromberg
|
824efa9705
|
fpr: yum, systemd, cloud-sql-proxy, image-automation-controller, helm, bom, aws
|
2023-03-14 19:00:44 -04:00 |
|
Thomas Stromberg
|
b3825ba2b9
|
fpr: Canon Universal Installer, melange, GPG, key names
|
2023-03-06 15:11:11 -05:00 |
|
Thomas Stromberg
|
fb7cd56249
|
fpr: abrt-dbus, gdm, chrome, ff, etc
|
2023-02-24 16:30:17 -05:00 |
|
Thomas Stromberg
|
504ef2c8dd
|
gcloud: filter out last_update_check, last_survey_prompt
|
2023-02-17 12:03:36 -05:00 |
|
Thomas Stromberg
|
f87541c945
|
False positive flush, particularly in talkers
|
2023-02-17 11:57:23 -05:00 |
|
Thomas Stromberg
|
3d13d4995a
|
hidden system paths: include inode
|
2023-02-17 10:41:42 -05:00 |
|
Thomas Stromberg
|
d897f0b50d
|
fpr: Nessus, mysql-shell, ntia-checker, Ecamm, CopyClip, etc
|
2023-02-14 08:33:05 -05:00 |
|
Thomas Stromberg
|
e57f03b89f
|
fpr: Opera, TextExpander, socket_vmnet, elive, etc
|
2023-02-08 15:12:10 -05:00 |
|
Thomas Stromberg
|
2634e9d45b
|
Monday morning false-positive purge
|
2023-02-08 14:37:09 -05:00 |
|
Thomas Stromberg
|
d302a9ff55
|
Purge false positives, again and again
|
2023-02-02 21:46:53 -05:00 |
|
Thomas Stromberg
|
ccf7ba413e
|
macOS: Add exceptions for AppleInstallType.plist & osquery
|
2023-02-02 16:36:17 -05:00 |
|
Thomas Stromberg
|
f5fe9a4aac
|
Refactor process_events queries for more accurate parenting
|
2023-01-26 11:40:54 -05:00 |
|
Thomas Stromberg
|
f7c1557aee
|
fpr: libinput, kue, updatedb, mariadb, terraform
|
2023-01-23 08:13:04 -05:00 |
|
Thomas Stromberg
|
e6824d87e9
|
Run 'make reformat'
|
2023-01-20 09:24:24 -05:00 |
|
Thomas Stromberg
|
8e9ae0fda3
|
Less false positives: particularly among systemctl calls
|
2023-01-20 08:40:08 -05:00 |
|
Thomas Stromberg
|
a100aa307f
|
Add more paths to unexpected-hidden-system-paths, rename
|
2023-01-19 11:42:44 -05:00 |