osquery-defense-kit

mirror of https://github.com/chainguard-dev/osquery-defense-kit synced 2025-01-23 22:02:44 +00:00

History

Thomas Stromberg 5db432b2c6 Add compile (Go Lang) to exceptions list		2023-01-16 13:57:14 -05:00
..
c2	FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc	2023-01-16 12:56:39 -05:00
collection	Weekend false-positive flush	2023-01-14 08:19:26 -05:00
credentials	FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc	2023-01-16 12:56:39 -05:00
discovery	Speed query up by first referencing processes table	2023-01-13 13:48:22 -05:00
evasion	FP removal: plymouth, 1Password, firejail, systemd	2023-01-16 13:55:53 -05:00
execution	Add compile (Go Lang) to exceptions list	2023-01-16 13:57:14 -05:00
exfil	FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc	2023-01-16 12:56:39 -05:00
impact	Filter out new false positives	2023-01-13 15:24:18 -05:00
initial_access	FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc	2023-01-16 12:56:39 -05:00
persistence	FP removal: plymouth, 1Password, firejail, systemd	2023-01-16 13:55:53 -05:00
privesc	FP removal: Selenium, PolKit helper, gephi, docker-credential-gcloud, firejail, etc	2023-01-16 12:56:39 -05:00