osquery-defense-kit

mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2025-02-16 17:37:06 +00:00

Author	SHA1	Message	Date
Thomas Stromberg	f038dc7557	fpr, refactor minimal-socket-client-macos	2024-10-24 15:12:33 -04:00
Thomas Stromberg	81180803ae	fpr: tune-ppd, lightdm, nami, gradle, etc	2024-10-22 16:12:21 -04:00
Thomas Stromberg	14a9098a9a	widen query scope	2024-10-16 09:32:00 -04:00
Thomas Stromberg	9a1a4b049e	fpr: prosoft, ujust, kandji-library-manager, etc	2024-09-26 12:40:04 -04:00
Thomas Stromberg	8d583131ca	fpr: cups, zed, pycharm, msedge, surfshark, ubiquiti	2024-09-24 15:10:21 -04:00
Thomas Stromberg	4d0a9fd533	fpr: sequoia, osquery, cups, atops, transmission, etc	2024-09-23 11:07:53 -04:00
Thomas Stromberg	4b10d10520	False-positives be damned	2024-08-27 18:40:43 -04:00
Thomas Strömberg	7d468b6166	Merge pull request #379 from tstromberg/fpr-aug20 unexpected https: add GitHub to exceptions list	2024-08-26 12:49:24 -04:00
Thomas Stromberg	f2df771c36	unexpected https: add GitHub to exceptions list	2024-08-20 15:01:50 -04:00
Thomas Stromberg	1facce21f2	fpr: syft, krunner, k9s, espeak, chainctl, supermaven	2024-08-12 13:57:35 -04:00
Thomas Stromberg	00a9f6450b	fpr: sddm-helper, smartd, Xorg, elastic, WebEx, BambuStudio, keepass, etc	2024-07-26 13:26:37 -04:00
egibs	c9ae0805e2	Add exceptions for Docker's kubectl, ngrok, SAFEQ, and Zed Signed-off-by: egibs <20933572+egibs@users.noreply.github.com>	2024-07-18 07:25:04 -05:00
Thomas Stromberg	134782202d	Add google-cloud-sdk log-streaming	2024-07-12 17:02:36 -04:00
Thomas Stromberg	6c292f11af	fpr: kas, bitnami, redis, bincapz, kolide, docker, whatsapp	2024-07-12 16:55:49 -04:00
Thomas Stromberg	4df51743d0	fpr: lima, rpm-ostree, gitsign, kde, python, etc	2024-07-01 21:56:28 -04:00
Thomas Stromberg	6fe74680a0	fpr: June 28 - final rule tuning	2024-06-28 10:08:04 -04:00
Thomas Stromberg	00fa80a0d9	Massive false-positive reduction, particularly for uBlue	2024-06-27 09:23:52 -04:00
Thomas Stromberg	18e05c5a4c	fpr: June 25	2024-06-25 20:48:09 -04:00
Thomas Stromberg	ab2535717f	fpr: Fedora Silverblue, MHLinkServer, new terminals	2024-05-23 17:26:33 -04:00
Thomas Stromberg	5dd614f54c	fpr: MHLink, k3d, BlueFin, query tuning	2024-04-26 16:14:02 -04:00
Thomas Stromberg	d3352610f4	fpr: snapd, cups, ubuntu, etc	2024-03-07 16:33:01 -05:00
Thomas Stromberg	b1e05d6612	merge conflict	2024-02-16 17:17:45 -05:00
Thomas Stromberg	f87a8e8197	fpr: Elastic, IR, Velociraptor, BitDefender, incus, Adguard	2024-02-16 17:14:11 -05:00
Thomas Stromberg	12a55753b5	fpr: Elastic Defend, gcloud, Warp, etc	2024-02-05 10:45:17 -05:00
Thomas Stromberg	e42ea9a4bc	massive fpr: Rapid7, Elastic, everything	2024-01-26 14:07:37 -05:00
Thomas Stromberg	5d31e8da5f	fpr: psi, arduino, bitdefender, keybase, cody, etc	2024-01-22 10:36:01 -05:00
Thomas Stromberg	ceec1718f9	fpr: snap, mutedeck, idea, Chrome exts	2024-01-18 17:15:37 -05:00
Thomas Stromberg	229a32a61e	fpr: sourcegraph,phantombuster,iterm,cody,stickers	2024-01-09 16:14:00 -05:00
Thomas Stromberg	875125fc94	Add exceptions for Elastic Defend & Rapid7 InsightIDR	2024-01-08 19:07:57 -05:00
Thomas Stromberg	1304d66783	Add more Elastic exceptions	2024-01-08 17:55:30 -05:00
Thomas Stromberg	800e4aa2cc	fpr: kind of everything	2023-12-15 17:10:06 -05:00
Thomas Stromberg	310e51d2a2	fpr: Capture One, Grammarly, Mullvad, etc	2023-12-08 17:12:27 -05:00
Thomas Stromberg	6e1e7f29c2	fpr: dbeaver, AwesomeScreenshot, Hyper, etc	2023-11-02 09:39:41 -04:00
Thomas Stromberg	0060bb087e	fpr: aws, java, arch, cody, google, wireshark, etc	2023-10-31 11:40:10 -04:00
Thomas Stromberg	3c2be1c16e	fpr: Kolide, qemu, bash, monday, macOS	2023-10-24 18:01:36 -04:00
Thomas Stromberg	5f2680ca8b	fpr: Monday, Splunk, Gnome, Git, Grammarly, etc	2023-10-02 11:35:11 -04:00
Thomas Stromberg	b39fca4e9f	fpr: RSA keys, tcpdump, login, crane, souregraph, etc	2023-09-20 09:30:46 -04:00
Thomas Stromberg	f16c3cdf53	fpr: sourcegraph, nginx, factorio, fan control, emacs, nushell	2023-09-14 17:13:12 -04:00
Thomas Stromberg	190e8adcfd	Merge to master	2023-09-01 17:34:36 -04:00
Thomas Stromberg	84125c4bb1	Remove recently common false positives	2023-09-01 17:09:47 -04:00
Thomas Stromberg	188bc78f4c	Fix errors	2023-08-15 18:29:27 -04:00
Thomas Stromberg	dce2eb2af5	Add many exceptions	2023-08-15 18:13:06 -04:00
Thomas Stromberg	921cdc521e	fpr: nvidia drivers, su, agetty, crystalhd, hercules, etc	2023-07-19 15:22:43 -04:00
Thomas Stromberg	979cef837b	fix missing comma	2023-07-12 17:40:06 -04:00
Thomas Stromberg	a0e4183bf4	fpr: Velociraptor, nessus, kandji, java, SteelSeries, etc	2023-07-12 17:38:26 -04:00
Thomas Stromberg	d74405c817	fpr: Brave, Adobe, Signal, Kandji, SteelSeries, etc	2023-06-30 16:38:31 -04:00
Thomas Stromberg	cebf617c82	fpr: terragrunt, mdnsResponder, Spotify, Zoom, etc	2023-06-14 10:58:41 -04:00
Thomas Stromberg	32328c91f1	fpr: Slack, Gnome, Sigstore, Logitune, etc	2023-06-12 10:10:57 -04:00
Thomas Stromberg	ff2ab95431	Remove file sizes from systemd exception key	2023-06-08 18:26:57 -04:00
Thomas Stromberg	c8760e0ae1	fpr: macOS, Signal, Creative Labs, node, etc	2023-06-07 09:55:17 -04:00

1 2

67 Commits