RepoMirrors
/
osquery-defense-kit
mirror of https://github.com/chainguard-dev/osquery-defense-kit
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
778 Commits 1 Branch 31 Tags 5.6 MiB
Commit Graph

13 Commits

Author SHA1 Message Date
Thomas Stromberg 81b09ae711
fpr: aws certs, AdobePIM, slack 2023-03-04 12:20:53 -05:00
Thomas Stromberg f25cfe1399
fpr: aws-sdk, melange, Tailscale, Xprotect, etc 2023-03-03 07:24:42 -05:00
Thomas Stromberg fa7a0971d4
Add RSA key finders, and mdfind-based GCP key finder 2023-03-01 11:05:35 -05:00
Thomas Stromberg e6824d87e9
Run 'make reformat' 2023-01-20 09:24:24 -05:00
Thomas Stromberg 8e9ae0fda3
Less false positives: particularly among systemctl calls 2023-01-20 08:40:08 -05:00
Thomas Stromberg 0b057b45d2
Increase long uptime cutoff from 60d to 90d 2023-01-19 12:11:01 -05:00
Thomas Stromberg cb896b9e10
Filter out new false positives 2023-01-13 15:24:18 -05:00
Thomas Strömberg cb0ed647d8
Merge branch 'main' into bugfixesJan13 2023-01-13 13:56:19 -05:00
Thomas Stromberg 1084843ed4
Add header metadata 2023-01-13 13:47:33 -05:00
Thomas Stromberg 7b83467305
new detector: unencrypted GCP service account keys 2023-01-13 11:21:48 -05:00
Thomas Stromberg 546d1367eb
Rename unusually-long-uptime 2022-11-23 07:10:41 -05:00
Thomas Stromberg 39e9aee6eb
Split parent-missing-from-disk, address false positives 2022-11-23 07:10:03 -05:00
Thomas Stromberg 26ee658c4a
Initial re-organization around the MITRE ATT&CK framework 2022-10-11 21:53:36 -04:00