RepoMirrors
/
osquery-defense-kit
mirror of https://github.com/chainguard-dev/osquery-defense-kit
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
996 Commits 1 Branch 31 Tags 5.6 MiB
Commit Graph

11 Commits

Author SHA1 Message Date
Thomas Stromberg d4dd423745
fpr: Grammarly, semodule, docker-compose, xdg, etc 2023-03-30 18:44:01 -04:00
Thomas Stromberg f25cfe1399
fpr: aws-sdk, melange, Tailscale, Xprotect, etc 2023-03-03 07:24:42 -05:00
Thomas Stromberg a8ed058d4d
Query performance improvements, add pids, decrease frequency 2023-02-09 17:01:29 -05:00
Thomas Strömberg eef833287a
Merge pull request #164 from NACHOSWITHCHEESE/fixing-macos-detection-compatibility 
Modified detections explicitly targeted towards macOS to not include cgroup field
 2023-02-08 20:54:45 -05:00
echunduri e44dc167e9 Modified detections explicilty targeted towards macOS to not include cgroup_path fields anymore 2023-02-09 10:57:03 +11:00
Thomas Stromberg 2634e9d45b
Monday morning false-positive purge 2023-02-08 14:37:09 -05:00
Thomas Stromberg bb3e1f964e
Run make reformat, update max rows for incident response 2023-02-02 17:58:19 -05:00
Thomas Stromberg 809645a3bf
Add new Kolide id, fix some debug lines 2023-02-02 17:42:46 -05:00
Thomas Stromberg 70019ff668
macOS: speed up missing parent check (2m to 1s) 2023-02-02 16:59:12 -05:00
Thomas Stromberg f9dce0a72d
Include more process information across queries 2023-02-01 13:55:55 -05:00
Thomas Stromberg 39e9aee6eb
Split parent-missing-from-disk, address false positives 2022-11-23 07:10:03 -05:00