osquery-defense-kit/detection/credentials
Thomas Stromberg 4df51743d0
fpr: lima, rpm-ostree, gitsign, kde, python, etc
2024-07-01 21:56:28 -04:00
..
macos_keyboard_sniffer.sql fpr: lima, rpm-ostree, gitsign, kde, python, etc 2024-07-01 21:56:28 -04:00
unexpected-dev-opener-linux.sql fpr: June 28 - final rule tuning 2024-06-28 10:08:04 -04:00
unexpected-dev-opener-macos.sql fpr: Fedora Silverblue, MHLinkServer, new terminals 2024-05-23 17:26:33 -04:00
unexpected-sensitive-file-access-linux.sql Massive false-positive reduction, particularly for uBlue 2024-06-27 09:23:52 -04:00
unexpected-sensitive-file-access-macos.sql Refactor process_events queries for more accurate parenting 2023-01-26 11:40:54 -05:00
yara-mounted-stealer.sql Reduce false positives on Ubuntu + Lima 2023-09-26 13:09:22 -04:00