osquery-defense-kit

mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2025-02-03 03:01:45 +00:00

History

Thomas Stromberg 141ab28310 False positives: autodocs, jupyter, apko		2023-01-27 10:38:01 -05:00
..
c2	False positives: autodocs, jupyter, apko	2023-01-27 10:38:01 -05:00
collection	fpr: Parallels, nerdctl, Xorg, nvidia, Stream, etc	2023-01-26 20:40:47 -05:00
credentials	fpr: Parallels, nerdctl, Xorg, nvidia, Stream, etc	2023-01-26 20:40:47 -05:00
discovery	Remove unused active fields, add WhatsApp ioreg exception	2023-01-27 08:46:48 -05:00
evasion	Remove unused active fields, add WhatsApp ioreg exception	2023-01-27 08:46:48 -05:00
execution	False positives: autodocs, jupyter, apko	2023-01-27 10:38:01 -05:00
exfil	fpr: libinput, kue, updatedb, mariadb, terraform	2023-01-23 08:13:04 -05:00
impact	fpr: minikube, tailscale, dex, pacman, virtualbox, steam, lsmod, busybox, etc	2023-01-23 20:33:52 -05:00
initial_access	False positives: autodocs, jupyter, apko	2023-01-27 10:38:01 -05:00
persistence	Remove unused active fields, add WhatsApp ioreg exception	2023-01-27 08:46:48 -05:00
privesc	Remove unused active fields, add WhatsApp ioreg exception	2023-01-27 08:46:48 -05:00